Trevance® User Guide - Auric Systems International
Contents
1. 3 Click on S to view a screen like the following 162 CHAPTER 10 REPORTS AND EMAILS Save As x Savein O Trevance se EB archive A i BatchDecline My Recent BatchExport Documents E BatchImport 3 Data Does Desktop log REPORTS O Templates Warning My Documents My Computer Quem fs My Network Saveastype HTML Fie html htm Cancel Places 4 Select the place where you want to save the file Save in and type in the File name lara 10 2 Configuring and Sending E Mail Notifications Messages At your request Trevance automatically sends you e mail noti fications of system events such as system errors status of batches the total value of authorization transactions and who has logged in to the system 1 Click on Configure 2 Click on E Mail Notification to view 10 2 CONFIGURING AND SENDING E MAIL NOTIFICATIONS MESSAGES 163 Send E Mail Notification of System Events Message Content Mail Server Scheduling Include Notification Types system Enor Y Import Error Batch Report Daily Report Hourly Report Login Report Startup J All Log F Include XML Attachment If this box is checked T notification to the E Mail e always includes log files as attachments The default is that no notifications are sent out 3 To change the default click on Send E Mail Notification of System Events to view2. ub WINS icra yk a ee Ee Oe OE ee tis Men s ds Sem thal mo dow Bea ae we Bee 117 LOPE La ee N 124 Recent Batches Window 126 Submittal Queue o 128 Real Time Monitor lt a x w ead 2 o S 134 Scheduling Database Maintenance 142 Email Notifications lt 6 lt 0 G44 4 0 a Ge a we eS 164 Chase Paymentech Salem Debit Card 212 Chase Paymentech Salem Credit Card 216 Chase Paymentech Salem Purchase Card Level II 218 Chase Paymentech Salem Purchase Card Level III 219 Chase Paymentech Salem Third Party Encrypted Card220 xii List of Tables xiii 16 7 Chase Paymentech Salem Electronic Checks 221 16 8 Chase Paymentech Salem Third Party Encrypted Elec tronie CMCCKS adan e He e h 222 16 9 Chase Paymentech Salem Switch Solo 223 16 10Chase Paymentech Salem PIN less Debit 223 16 11Chase Paymentech Salem PIN based Debit 225 16 12Chase Paymentech Salem PIN based Debit 2 226 16 13Chase Paymentech Salem ARC 227 16 14Chase Paymentech Salem POP 229 16 15Chase Paymentech Salem Bill Me Later 230 16 19Chase Paymentech Salem PayPal 237 16 20Chase Paymentech Salem Retail Credit Card Swipe 242 16 21Chase Paymentech Salem Retail Credit Card Manu ally Entered se q pe Boe od hw e a a area 243 16 22Chase Paymentech Salem Card Not Present
3. 5 Type in a new file extension You must assign a unique file extension to import files You will create major problems if for example import files and done files have the same file extension The other files may all use the same extension if your installation requires that 6 If you change your mind you can return to the defaults the extensions in place after you install Trevance9 Click on Dota 7 When you ve finished changing the extensions click on 3 8 4 Changing Troubleshooting Options Trevance can generate a number of logs that are useful when attempting to troubleshoot problems All Trevance logs are sanitized so that sensitive account and Card Identifier information does not appear in the logs However there is still significant sensitive information customer names and 74 CHAPTER 3 CONFIGURING TREVANCE addresses in the logs Plus if account or Card ID information is passed in incorrect fields e g sending a credit card number in an address field the information is not sanitized 1 Click on Configure 2 If necessary click on Pause Server to Configure Items Below 3 Click on Options 4 Click on Troubleshooting to view Options General Security File Extensions Troubleshooting Additional Logs Batch Log UPIDOWN LOAD log Batch Protocol Log batch_protocol log Exceptions Log Requires Map File exceptions log NOTE Although account numbers and other sensitiv
4. Ter Applies to Applies to PIN Less PIN Based You cannot Auth for a dollar to verify the debit card yes yes is valid If you try to Auth for a dollar you remove 1 00 from the customer s checking account You must deposit the exact same amount as you autho yes yes rized If you authorize a debit transaction the money is yes yes removed from the customer s account but then you have to deposit the authorized transaction to put the money in your account If you don t deposit the money won t be put into your account There is no SALE transaction type only real time autho yes no rization followed by a batch deposit There is no REFUND transaction yes yes Authorization codes sometimes return as blank yes yes This is valid behavior You can check the LASTACTIONSUCCEEDED or yes o RESPONSE CODE field to determine if the authorization succeeded 18 3 2 Required Information Regardless of the method of payment First Data transactions re quire the following information e ACCOUNT Credit card debit card or bank account number 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 297 e ACTION Authorization sale deposit refund Set to default or import with each transaction AMOUNT DIVISION ID Set to default or import with each transaction MERCHANT ORDER NUMBER Every transaction requires a mer chant order number This value is used for tracking trans actions
5. Message Content Mail Server Scheduling Include Notification Types L System Error C Import Error _ Batch Report _ Daily Report Hourly Report Login Report L Startup LJ All Logs TT Include XML Attachment If this box is checked Trevance will attach an XML version of the notification to the E Mail except for the All Logs Notification which always includes log files as attachments 4 Click next to any messages you desire 164 CHAPTER 10 REPORTS AND EMAILS Table 10 1 Email Notifications Type of Notification Contents All Logs Delivers a copy of all logs as an attachment to the e mail Batch Hold Notifies you if the processing service sends a message that they are holding your batch Currently available with custom processor in stallations only Batch Reject Notifies you if the processing service rejected your batch Currently available with custom processor installations only Batch Report Summarizes information on successful batches including types of transactions and total amount Daily Report Lists all system activity for 24 hours from the time you select the default time is midnight it contains all the information included in all the other reports Database Notifies you immediately when database Maintenance maintenance is complete Hourly Report Gives the total value of authorization trans actions by division up to and including the previo
6. Move all the available fields into the Fields in Response box Move the selected field into the Available Fields box that lt field isn t exported Move all the fields into the Available Fields box no fields are exported 6 The first field shown in the Fields in Response box is the first field to appear in the response for each transaction To change a field s position select the field by clicking on the field name Then Table 3 9 Changing Fields Position Click on To To the top spot in the box the beginning of the record Al box Up one spot Kal Continued on next page 3 6 CONFIGURING THE REAL TIME WEB INTERFACE65 Table 3 9 Continued from previous page Click on To Move Field Down one spot box that field isn t exported y To the bottom spot in the box the end of the record box no fields are exported Trevance arranges each response to show the fields you chose at Step 3 in the order you chose at Step 4 To return all fields to their default position with the default fields listed in their original order in the FIELDS IN RESPONSE box click on a Type a delimiter in the DELIMITER box This is the marker that separates each information field in the transaction as shown in the PREVIEW box The default delimiter is a pipe Under options you can choose whether to INCLUDE FIELD NA
7. Export C ProgramFiles Trevance BatchExpot Wang C PogamFies Treverce Wamng SS Other Fie C Program Files Trevance FilesFromProcessor ses System Directories Log C ProgamFiles Trevance log sl Archive C Program Files TrevanceVrchive e Backup C Program FilesWTrevance Backup e Recovery Log C ProgiamFiles Trevance RecoveyLog ces Cancel Defaut 68 CHAPTER 3 CONFIGURING TREVANCE 5 Click on next to the directory you want to change for example RecoveryLog to view a screen like the following Browse for Folder Uy Set Batch Export Directory to C Program Files Trevance BatchExport ComponentLicenses Data Decine v gt Ca Comes 6 Select your new directory 7 When you re finished click on 8 Continue changing directories or click on again to return to the main Trevance screen 3 7 2 Over typing for either local or remote configuration To change the directories by over typing 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Directories to view 3 8 CONFIGURING OPTIONS 69 ON Batch Directories Import CAProgramFiles Trevance Batchimpot Export C Program Files Trevance BatchExpot Decine _ C ProgamFles Trevence BatchDece SS Warming C Program Files Trevance Warning 000 Other Fie C ProgramFiles Trevance FiesFromProcessor System Directori
8. 25 3 1 4 Checking the File Extension 25 3 1 5 Understanding Fields 28 il 3 2 3 3 3 4 3 9 3 6 3 7 3 8 3 9 3 10 3 11 CONTENTS 3 1 6 Restarting the Console When It Times Out 29 3 1 7 Saving Configuration Information 3 1 8 Configuring Currencies Adding Deleting and Administering Users 3 2 1 Adding a User lt a E A Y e 3 2 2 Changing User Information 3 2 3 Deleting a User piro dos Configuring Processor Settings 3 3 1 Configuring Imports for Batch Files Configuring Exports for Batch Files Generate Server Passphrase and Batch File En cryption Key oe eer Bee ee ek ee 3 5 1 Generate Server Passphrase 3 5 2 Generate Import or Export an Encryp tion Key 2k aa a EO be 2 Configuring the Real Time Web Interface 3 6 1 Enable Web Interface and Change Server POE paa a Ge A A ed g 3 6 2 Formatting the Web Request 3 6 3 Formatting the Web Response Configuring Directories 3 7 1 Browsing for local configuration only 3 7 2 Over typing for either local or remote configuration os coria a 3 7 3 Returning to Defaults Configuring Options 3 8 1 Changing General Options 3 8 2 Selecting a Secure File Deletion Method 3 8 3 Changing File Extensions 3 8 4 Changing Troubleshooting Options Producing a Configuration Report Switching between Versi
9. Record 1 gt 524 0 1519 1015 1570 11 63 258 98 Linda Poole Record 2 i 5191 4090 3756 0100 11 62 87 03 Harry Bratton 5191 4090 3756 0100 _ 12 02 184 48 Carl _ Malone You set up Trevance s batch import files including delimiter and types of fields to match the requirements of your processing service You also set up the batch export files to match the re quirements of your external application Once you set up these formats Trevance automatically applies them Auric Systems International recommends using a tab as the delimiter not a comma because commas frequently appear in name and address fields When you use a tab delimiter you don t have to put quotes around each field 6 3 Understanding Trevance Terms The following definitions appear in alphabetical order They in clude answers to questions you may have about the way Trevance works For example if you d like an explanation of all file exten sions see File directories and extensions below 108 CHAPTER 6 UNDERSTANDING TREVANCE 6 3 0 2 Actions The following table lists e The actions that Trevance supports e The standard Trevance abbreviation for the action The table also includes a column where you can write the term your processing service uses for the action For example a Re fund Credit authorization might be called a refund by your pro cessing service Table 6 1 Terms Import Action
10. Create shortcut C Documents and Settings All Uisers Start MenulPrograms Trevanc Create shortcut C Documents and Settings All Users Start Menu Programs Trevant Create shortcut C Documents and Settings All Users Start MenulPrograms Trevanc Create shortcut C Documents and Settings All Users Start Menu Programs Trevanc 2 3 STARTING TREVANCE THE FIRST TIME 15 10 Wait The following screen appears Completing the Trevance Setup Wizard Trevance has been installed on your computer Cick Finish to close this wizard it Glide on Trevance is now installed 2 3 Starting Trevance the First Time L Okka 2 Click on All Programs 3 Click on Trevance Transaction Gateway 4 Click on Trevance to view a screen like the following 16 CHAPTER 2 INSTALLING TREVANCE p Login EJ T Trevance Console Host localhost Port 6990 User MIN s o a 5 In the Password box type ADMIN 6 A screen like the following appears figu Report Hel Trevance Console ADMIN on Trevance for Paymentech Local z IHE Log Batch Real Time Monitor Real Time Chart Server is 4 7 2004 4 33 58 PM Trevance v 1 1 1 1 Server Application Sta 4 7 2004 4 33 58 PM D Information Startup completed DEMO 4 7 2004 4 33 53 PM 09 Information Creating file authorization request threads 4 7 2004 4 33 51 PM ee Information Creating Weblnterface authorization reque 4 7 2004 4 33 51 PM
11. LB PYTID Do Void AR B Do Void Billing Agreement AR B Order Reversal w LE PYORDR Do Void Do Void Billing Agreement AR E AR E Create Order OO PYTOKEN Do Express Payment PYPAYER ED O Order From OO PYCID Do Reference Do Reference Contract AU E AU E Create Billing OC PYTOKEN Do Express Payment Agreement PYPAYER ED C Create Order w OE PYTOKEN Do Express Payment Billing Agreement PYPAYER ED E Mass Pay MP Mass Pay PENDING RG S Void V PYTID Remove Previous 16 0 19 PayPal Process Flow The PayPal process flow can be thought of in the following phases 241 e Initiation e Authentication e Authorization e Capture Initiation Authorization and Capture occur through the Trevance interface to Chase Paymentech Authentication occurs on the web through interaction with the PayPal site A typical sale transaction would be as follows e SA Set for Auth Get back a PYTOKEN e Redirect to PayPal web site for authentication Use the PY TOKEN value as the PayPal Token parameter e GA Get for Auth Get customer information name ship ping address etc as well as PYPAYER e Auth Authorise Get back a PYTID e D Capture Capture the authorization using the PYTID returned by the Auth Get back a different PYTID which refers to the capture itself You can also work with Orders which allow multiple authen tication e SO Set for Order Get back a PYTOKEN e Redirect to PayPal web site for authentication Us
12. X ECommerce Class D Merchant Default y Submitter 1D y cmos This screen lets you select default information for Trevance to use with the transaction if certain fields are missing 294 CHAPTER 18 FIRST DATA COMPASS PLATFORM ACTION AUTHORIZATION is the only action accepted by First Data and Trevance through their real time or on line system If you are handling a PIN based debit you can send a real time REFUND AUTHORIZATION RA transaction This is consid ered to be a type of authorization a refund authorization DIVISION ID This is the First Data Division ID that is as sumed for all transactions submitted with a division SUBMITTER ID Most current installations have a single sub mitter ID for all transactions Select that submitter ID CLASS Many merchants have First Data assign a specific transaction class to each division Select MERCHANT DEFAULT to use the First Data configuration PRODUCT DELIVERY TYPE Optional field Leave it blank if you re not sure how to fill it in ECOMMERCE This field describes the method by which ecom merce transactions are received The most common is EN CRYPTED HTTPS indicating a secure web transaction You can set a different default value at First Data for each divi sion If you use that method select MERCHANT DEFAULT 18 3 Methods of Payment Actions and Required Fields Trevance for First Data supports the following methods of pay men
13. e ECOMMERCE This field describes the method by which ecommerce transactions are received The most com mon is ENCRYPTED HTTPS indicating a secure web transaction 17 2 Methods of Payment Actions and Required Fields Trevance for Paymentech PNS supports the following methods of payment MOPs Disney Rewards Cards 17 2 1 Required Information Regardless of the method of payment Paymentech transactions require the following information ACCOUNT Credit card debit card or bank account number ACTION Authorization sale deposit refund Set to default or import with each transaction AMOUNT DIVISION ID Set to default or import with each transaction MERCHANT ORDER NUMBER Every transaction requires a mer chant order number This value is used for tracking trans actions through Paymentech and the Card Associations Merchants should provide a MERCHANT ORDER NUMBER with each transaction Trevance generates an order number if one is not provided If you re performing two pass authoriza tion transactions that are followed by deposits you must use the same order number for the deposit and for the autho rization A unique order number for each transaction helps reporting and reconciliation but is not mandatory for Pay mentech 17 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 277 17 2 2 Supported Disney Rewards Cards Actions Trevance supports the following actions for the Disney Rewards Card
14. s Expanded Information Trevance detected a File in the Batch Import folder but could not import it Suggested Action Review the File for formatting issues Message Internal Error on ID Queue Write Error d Expanded Information An internal error occurred 426 APPENDIX D ERROR AND EVENT MESSAGES Suggested Action Please provide the message and error number to Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the Trevance Logs suggested below Message Internal Error on Message Queue Read Error d Expanded Information An internal error occurred Suggested Action Please provide the message and error num ber to Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the Trevance Logs suggested below Message PUT Exception s Expanded Information Trevance has encountered a problem with the Batch interface for the Payment Processor and was un able to upload a file Suggested Action Review the Batch Protocol Log and Proces sor Settings for correct Batch interface settings Trevance Adminis trative Console gt Configure gt Processor Settings gt Server Info gt Batch Message SFTP Error s Expanded Information Trevance has encountered a problem with the Batch interface for the Payment Processor Suggested Action Review the Batch Protocol Log and Proces sor Settings for correct Batch interface settings Trevance Administra t
15. BML classifies authorization requests as being of three types CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM 232 e Var D Using dummy account numbers e Var Al Real account number stored from previous purchase for exist ing customer WEB e Var A2 Real account number plus further identifying information Call Centers NOTES Var D only Var D and Var A2 only 3Last four digits of social security number only Must be US Trevance automatically identifies Bill Me Later transac tions Refer to the on line field reference list for details on the specific fields Chase Paymentech Salem European Direct Debit Authorization Deposit Sale Refund EDD Country Code EDD Country Code EDD Country Code EDD Country Code EDD Bank Sort Code EDD Bank Sort Code EDD Bank Sort Code EDD Bank Sort Code EDD RIB Code optional EDD RIB Code optional EDD RIB Code optional EDD RIB Code optional Bill Address First Name Bill Address First Name Bill Address First Name Bill Address Last Name Bill Address Last Name Bill Address Last Name The EDD Country Code EDCNTRY indicates the country in which the customer s bank is located It must be one of the following e AT Austria e BE Belgium e FR France e DE Germany e NL Netherlands e GB United Kingdom 233 The EDD Bank Sort Code EDBSC identif
16. Checking Account Type 2 Checking Account Type 2 Checking Account Type 2 Authorization Code Authorization Date NOTES 1 Although Paymentech allows merchants to set a default value for the ECP Authorization method Trevance requires an A to be imported as the ECP Authorization Field the A indicates that this is an accounts receivable check conversion ARC transaction 2 Tf the Checking Account Type field is not provided Trevance defaults to Consumer Checking Trevance supports accounts receivable check conversion ARC transactions The merchant is responsible for scanning the paper check and extracting the necessary information to submit to Pay mentech through Trevance ARC is designed to improve check handling by turning paper checks into electronic transactions Trevance automatically identifies ARC transactions as check tender type K transactions 229 Table 16 14 Chase Paymentech Salem POP Authorization Deposit Sale Refund Routing Number Routing Number Routing Number Routing Number BillAddress BillAddress BillAddress BillAddress First Name First Name First Name First Name BillAddress BillAddress BillAddress BillAddress Last Name Last Name Last Name Last Name Check Number Check Number Check Number Check Number ECP Authorization Method 1 ECP Authorization Method ECP Authorization M
17. Fill in the S FTP boxes based on information you receive from First Data S FTP also has both a production and a fall back which First Data calls DR or Disaster Recovery address First Data may provide an explicit upload and download directory or they may indicate that you should download or upload from to the default directory In this case enter a period in the Trevance configuration for that directory Generate your S FTP public private keys Generate New SSH Key A new key SSH key pair will be generated when you click OK in the configuration dialog The public key is stored in a file you specify on the Trevance server This file must be forwarded to your payment processor for registration The private key is stored in a file in the Trevance data directory Enter a password below to use to encrypt the private key file on the server Public Key File on Server D kansas tevance TrevanceSSHKey pub Private Key File Password Re enter to Confirm Enter a password for encrypting the private keyfile This password is stored in the Trevance database The private key is generated and stored in the data directory with the name trev ssh key You should make backups of this file 18 1 CONFIGURING PROCESSOR SETTINGS 289 e Once generated you ll need to send the Public key to your First Data representative e Click on to complete 18 1 5 How Failover Works The Trevance failover mechanism works as follows e
18. Retrying This should be considered a serious error The connection should be considered inactive until Trevance logs a matching con nection established message Information Connection established to Authorization Host lt host port gt lt PRIMARY SECONDARY gt SOCKET If both the primary and secondary connections are inactive Trevance will respond to real time requests with ASIRESP 400 RESPTEXT Connection to authorizing host is not active Un able to complete request Any ASIRESP of 400 means that the transaction was not sub mitted to the processor It also indicates that there is a serious network issue that should be addressed 420 APPENDIX D ERROR AND EVENT MESSAGES Message Error building response s Expanded Information An error occurred while translating the processor response to the response to be returned from the web interface The message will contain more information about the cause of the error Suggested Action Review message and take appropriate action Message Error connecting to Authorization Host s s 9 Retrying Expanded Information Trevance could not successfully con nect to the Authorization Host Payment Processor Suggested Action Review for Networking issue Contact Pay ment Processor to troubleshoot event cause Message Error dequeueing auth request Error d Please contact technical support Expanded Information Trevance encountered an error while readi
19. e CURRENCY Usually set as a default at the merchant number level and not imported Any imported value overrides the default e LAST ACTION SUCCEEDED Returns Y whenever a requested transaction was successful Otherwise it returns N A useful first check to see if a transaction request was approved e RESPONSE CODE Payment Processor s response code e SOFT DESCRIPTOR 1 and 2 Provides information on the cardholder s monthly statement This must be set up at TransFirst before you can use it In addition to the fields described above you should also send the account holder s full name FIRST NAME and LAST NAME fields as well as the address city state and ZIP or postal code 19 3 ADVANCED TRANSACTION CONFIGURATION 329 whenever available This helps reduce your interchange rate pro cessing fee If you do not have a full address at least obtain and send a ZIP code U S or postal code Canada and United Kingdom Additionally obtain and transmit the card security code CVV2 CID information with authorizations Your TransFirst representative can help you choose what set of fields best fits your requirements 193 Advanced Transaction Configuration The preceding tables showed the basic transaction information for each type of transaction Once you get beyond the basics you must consult with your TransFirst representative to deter mine what data you should be sending for maximum efficiency and lowest
20. e Trevance is now configured to add a UTID to Payment Vault immediately for each transaction 10 Reports and Emails hiii This chapter describes how to configure print and save infor mation on the screen in the form of a report It also describes how to create and send hourly batch daily and special messages to your e mail concerning system events for example who logged in and when For information on configuration reports see Producing a Configuration Report on page in section 3 9 10 1 Configuring Printing and Saving Reports You can print the information from any screen as a report You can configure the report by specifying the information you want in the report heading 10 1 1 Configuring Reports To indicate the company name that appears in the heading of any report 1 Click on Configure 2 Click on Reports to view E Report Settings Company Name Appears in Report Header i Cancel 3 Type the company name The default is the user name 4 Click on Change the heading at any time by repeating these steps before you print the report 159 160 CHAPTER 10 REPORTS AND EMAILS 10 1 2 Printing Reports To print a report the page you re viewing 1 Click on Reports 2 Click on Print This Page to view a sample report If you re viewing the Batch screen Trevance asks if you want a re port on the Submittal Queue or on Recent Batches You ll view a
21. Authorization Date Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 244 DIRECT SALEM Table 16 21 Continued from previous page Authorization Deposit Sale Refund Authorization Code Manually entered retail credit card transactions look very much like card not present credit card transactions You must provide the minimum information plus the card s EXPIRATION DATE and ZIP CODE postal code Manually entered retail credit card transactions must import a P in the TRANSACTION CLASS field 16 0 20 Revolution Money Revolution Card Trevance supports Revolution Card in both Card Present retail and Card Not Present environments The mandatory fields needed to support these transactions are listed in the two tables below Revolution Card processes much like a Debit Card There is an initial authorization followed by a deposit transaction The amount you deposit must match the amount you authorize If you do not deposit you must reverse the authorization Similarly you must perform a realtime refund auth followed by a batch refund If necessary you can reverse a Refund Authorization using the RL action Revolution Card supports both a Full and Partial Authoriza tion In Full Authorization mode the transaction will decline if the full amount requested cannot be obtained In Partial Au thoriation mode the transaction will succeed if any amount can be obtained from the card The
22. Biller Reference C Other BML Customer Type BML Item Category w A Action lt AISICIDIR Account lt A N 19 Expiration Date lt A N 6011 9796 8607 3072 11 08 258 9 5191 4090 3756 0100 11 09 87 03 5191 4090 3756 0100 12 09 104 4 6011 9247 5752 2219 09 09 78 50 AOOpPO 6 Click on DEFAULT VALUES to view Import File Security Default Values After Import Action D Deposit v Submitter ID Division ID y ECommerce E Encrypted HTTPS y Class D Merchant Default y Prod Deliv Type y This screen lets you select default information for Trevance to use with the transaction if certain fields are missing e ACTION for real time file transactions AUTHORIZATION is the only action accepted by Paymentech and Trevance through their system If you are handling a PIN based debit you can send a real time REFUND AUTHORIZATION RA trans action This is considered to be a type of authorization a refund authorization e ACTION for batch transactions The two most common de fault actions are AUTHORIZATION and SALE also known as conditional deposit e DIVISION ID This is the Paymentech division ID that is as sumed for all transactions submitted with a division 208 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM SUBMITTER ID Batch only Most current installations have a single submitter ID for all transactions Select that submit ter ID CLASS Many merchants have Pay
23. FNMS recommends providing the SHIP TO ADDRESS fields AD DRESS CITY STATE ZIP for American Express AM purchase card transactions Authorization Date 20 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 339 Table 20 3 Tsys Accounts Receivable Check Conver sion ARC Authorization Deposit Sale Refund Routing Number Routing Number Routing Number Routing Number BillAddress First Name BillAddress First Name BillAddress First Name BillAddress First Name BillAddress Last Name BillAddress Last Name BillAddress Last Name BillAddress Last Name Check Number Check Number Check Number Check Number ECP Authoriza tion ECP Authoriza tion ECP Authoriza tion ECP Authoriza tion Method Method Method Method Checking Ac Checking Ac Checking Ac Checking Ac count count count count Type 2 Type A Type 2 Type Authorization Code Authorization Date NOTES 1 Although FNMS allows merchants to set a default value for the ECP Authorization method Trevance requires an A to be imported as the ECP Authorization Field the A indicates that this is an accounts receivable check conversion ARC transaction 340 CHAPTER 20 TSYS 2 If the Checking Account Type field is not provided Trevance defaults to Consumer Checking Trevance supports accounts receivable check convers
24. For example R 20040408 TRA contains real time transac tions completed on or before 2004 in April 04 and on the 8th day Select a cutoff date Archive Date for the processed transac tions that will be archived Do one of the following 148 CHAPTER 8 MAINTENANCE e Type a date in the Archive Date box including the slashes e Or click on to view a calendar and select a date e Or keep the default date which is 30 days earlier than today s date For example if today is August 10 the default date is July 11 6 Click on to start the archive 7 Wait After a while you ll see a message like the following z Trevance Console Y O Archive Complete YD Archived records entered on or before 4 8 2004 to the following files C Program Files TrevancelArchivelBatchLogi20040408 TRA 2 Records C Program Files TrevancelArchivelActivityLog 20040408 TRA 28 Records oy 8 Click on 9 Trevance archived all transactions processed on or before the date you chose Payment Vault All versions of Trevance now support Payment Vault technology PaymentVault technology consists of two components e Unique Tracking ID UTID generation and short term UTID storage in Trevance e external PaymentVault server for long term UTID storage The goal of the Payment Vault technology is to reduce the num ber of times your applications need to touch a credit card number With PaymentVault the
25. It must not have dashes Go 2 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM 222 Table 16 8 Chase Paymentech Salem Third Party En crypted Electronic Checks Auth Deposit Sale Refund Routing Number Routing Number Routing Number Routing Number Encryption Flag Encryption Flag Encryption Flag Encryption Flag BillAddress BillAddress BillAddress Bill Address First Name First Name First Name First Name BillAddress BillAddress BillAddress Bill Address Last Name Last Name Last Name Last Name Third party encrypted checking account values are a secure way for banks to provide account information to call centers with out revealing a customer s checking account number A bank provides these numbers along with customer con tact information The account value is encrypted using a Pub lic Private Key algorithm The bank maintains the key for en crypting the account and Paymentech maintains the key for de crypting only The merchant is unable to decrypt the account Encrypted check transactions require the same information as normal check transactions with the addition of an ENCRYPTION FLAG This ENCRYPTION FLAG is provided by Paymentech and is specific to the bank or other entity supplying the account num bers Transactions that contain the minimum information plus a ROUTING NUMBER and ENCRYPTION FLAG are automatically iden tified as encrypted electronic
26. Partial Import Failed 7 6 2 Removing a Batch Trevance allows you to remove any batch from the submittal queue Auric Systems International does not recommend this pro cedure 130 CHAPTER 7 OPERATION If you remove a batch from the queue it won t show up on the Recent Batches list because it was never submitted To remove a batch from the queue 1 Click on Server 2 If Trevance is not paused click on Pause 3 Click on the Batch tab to view the files in the Submittal Queue Submittal Queue Fie Cowt Status Uploaded As imp 5 Waiting Next Check at 1 26 59 t000000 006 Batch004 imp 15 Waiting Next Check at 1 27 05 t000000 007 4 3 2004 1 22 05 PM 4 Click on the file you want to remove in this case Batch004 imp 5 Click on Server 6 Click on Remove Batch to view Ol nT Trevance Console X The selected batch will be removed and its transactions deleted from Trevance Console Would you like to Export these transactions before removing the batch Click Yes to Export and then delete No to just delete or Cancel to not delete anything w cos You have three choices e Click on then click on and the transac tions are immediately and automatically exported Then the file is immediately deleted You should always export if you are using Trevance in the production mode e Click on Li and the file is immediately and automat ically deleted Nothing is
27. Program moco 4 4 2004 8 31 15 1955 34 12 Also the on screen log contains information like the follow ing Batch Real Time Monitor Real Time Chart Server Paused at 4 4 2004 8 34 18 AM Server Pause Requested No Files Available on Server 4 4 2004 8 34 184M Information 4 4 2004 8 24 18AM Information 4 4 2004 8 31 304M JJ Information 4 4 2004 8 31 30 AM 4 Information Exported 15 records in 0 109 seconds 4 4 2004 8 31 30 AM 4 Information Exported 9 Approvals 6 Declines to C Program Filesi Trev 4 4 2004 8 31 304M Information Batch Export Complete 4 4 2004 8 31 er D Information _ pai for Transactions papo san Batches im 13 Check the following e Did you configure Trevance to place all transactions approved and declined in the same BATCHEXPORT file If so use Windows Explorer to check that the BATCHEXPORT directory contains a file with a EXP extension In this example the import file was named Batch002 imp Therefore the BATCHEXPORT directory should have a file named Batch002 exp e Did you configure Trevance to split approvals from declines at export If so use Windows Explorer to 92CHAPTER 5 TESTING AND ACTIVATING TREVANCE 14 15 16 check that the BATCHEXPORT directory contains a file with a OK extension Batch002 0k Also the DE CLINE directory may contain a file with a BAD exten sion Batch002 bad if your processin
28. batches a Deposit transac tion for end of day settlement Trevance also supports the Full Authorization FA action which forces a transaction to fail if the amount requested for authorization is not available FA must only be used where a division is set up to support Partial Authoriza tions otherwise use the standard Authorized A action code The new June 2009 Account Check Y action code is sup ported for MasterCard and Visa transactions Sending an Account Check Y with a zero 0 dollar amount verifies the existence of the card Previously merchants would typically send a dollar auth that was never deposited Visa now requires all such transactions to now be Account Checks MasterCard supports this only for Recurring Billing transactions When Trevance receives an Auth transaction with a zero dol lar amount and the method of payment is either MasterCard or CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 218 DIRECT SALEM Visa it converts that into an Account Check Y action Zero amounts for all other methods of payment are passed directly to Chase Paymentech Table 16 4 Chase Paymentech Salem Purchase Card Level IT Authorization Auth Reversal Deposit Sale Refund Exp Date Exp Date Expiration Date Expiration Date Exp Date Auth Date Purchase Order Purchase Order Number Number Auth Code Tax Tax Ship To Address Ship To Address AM AM Tender Type Tender Type Authorization Code Authorization Dat
29. fields as well as the address city state and ZIP or postal code whenever available This helps reduce your interchange rate pro cessing fee If you do not have a full address at least obtain and send a ZIP code U S or postal code Canada and United Kingdom Additionally obtain and transmit the card security code CVV2 CID information with authorizations Your First National Merchant Solutions representative can help you choose what set of fields best fits your requirements 20 3 Advanced Transaction Configuration The preceding tables showed the basic transaction information for each type of transaction Once you get beyond the basics you must consult with your FNMS representative to determine what data you should be sending for maximum efficiency and lowest processing fees also called interchange FNMS s textitBatch and Direct Settlement Specifications de scribe over 100 possible fields that can be transmitted The spe cific fields you should send will depend on your market type your business class ecommerce MOTO recurring IVR etc and the forms of payment you accept credit card purchase card check ARC etc Working with your FNMS representative is the quick est way to determine which fields you should send 342 CHAPTER 20 TSYS 20 4 Generating an SSH Key Tsys requires a 2048 bit RSA key Unfortunately there are several slightly different variants on the format and the keys generated directly by
30. logs have no card holder data in them 1 43 Do Not Store CVV2 Field PaymentVault does not handle CVV or unencrypted account data 2 Protect Stored Cardholder Data 2 1 General e Trevance and CN Express support external Key Manage ment Systems e Merchants should develop a cardholder data retention policy e Card holder data exceeding the defined retention policy re tention period must be purged e Credit card data is never displayed by Trevance CN Express or Payment Vault e All logs including debug logs mask sensitive data fields e When Trevance and CN Express using the embedded database are uninstalled the uninstall routine securely deletes the data files in order to ensure locally encrypted data is re moved securely e When uninstalling Trevance CN Express or Payment Vault all cryptographic material must be removed The only cryp tographic material is the encrypted card holder accounts that may be in the database or backup files e Customers are advised that Windows restore points back ups crash files debug files and any other type of file that takes a snapshot of the registry and or hard drive where Trevance CN Express or Payment Vault is loaded whether resident on the system or not must be deleted using the se cure delete process described in this document for the cus tomer to maintain PCI compliance e Use a secure deletion program such as SDelete to remove
31. mation on changing the defaults see Chapter 4 The following table defines the default file extensions and directories Extension Table 6 2 Default File Extensions Type of File Found in This Directory BAD Export file containing declined batch transactions approved transactions are in the OK file BATCHDECLINE batch transactions CN Control file DNE Import file of batch transactions as received from an external appli cation except that critical infor mation is masked alternatively Trevance deletes the entire im port file after import BATCHIMPORT batch transactions ERR Error file created if the import procedure fails for some reason for example if you changed a di rectory name using Windows Ex plorer instead of Trevance s Configure menu BATCHIMPORT batch transactions EXP File containing approved and de clined batch transactions the ex ternal application reads this file BATCHEXPORT batch transactions IMP File of batch transactions re ceived from an external applica tion Trevance reads this file BATCHIMPORT batch transactions until Trevance automatically deletes it or changes the extension to DNE LOG Log file recording Trevance op erations LOG Continued on next page 112 CHAPTER 6 UNDERSTANDING TREVANCE Table 6 2 Continued from previous page Extension Type of File Found in
32. stores encrypted data but does not use encryp tion TM 2 4 PAYMENTVAULT 363 Payment Vault Stores Encrypted Cardholder Information e In configured PostgreSQL database e Optionally in configured Firebird database Also in Firebird backup files if running with the embedded Firebird database If using the local embedded Firebird database then securely delete the database file PV FDB If using the PostgreSQL database you must delete the Payment Vault schema from the PostgreSQL installation and remove the files in a manner compliant with your PCI policies and pro cedures Such removal is absolutely necessary for PCI DSS compliance 2 4 1 Re Encrypting Historic Data As historic data is retrieved from PaymentVault Trevance and CN Express examine the key that was used to encrypt that data If the key is not the current key Trevance and CN Express re encrypt that value and write it back to Payment Vault This converts your data encrypted with historic keys to data encrypted with the current key Secure Authentication Features 3 1 General You must maintain secure authentication for access to all payment processing applications and servers e Unique user IDs must be used for all administrative access to Trevance CN Express and Payment Vault e All Trevance CN Express and Payment Vault admin istration must occur on the server running the payment ap plication e You must ma
33. these files e Removal of historic cryptographic material is absolutely nec essary for PCI DSS compliance 393 3MCHAPTER 2 PROTECT STORED CARDHOLDER DATA e Trevance and CN Express require the use of an external key server application or service Key Service e The Key Service must be PCI compliant rotate keys at least once every 12 months use strong encryption such as 256 bit AES encryption 2 2 Trevance e Configure External Key Manager e Select the Key Management software service to which you will connect e Enter the proper credentials e Encryption keys for all sensitive data are now managed ex ternally e Trevance Stores Encrypted Cardholder Information e In embedded Firebird database contained in the Data sub folder under the default installation directory e Or in the remotely installed Firebird database Data loca tions should be listed and noted e In backup gbk files Note the location as set in the Trevance Configuration utility e If using the local embedded Firebird database then securely delete the database file PROD FDB Also delete the backup files cnxap_ The Date GBK e If using the remote Firebird database you must delete the CN Express schema from the remote Firebird installation and remote files in a manner compliant with your PCI poli cies and procedures Such removal is absolutely necessary for PCI DSS compliance e After the update from Trevan
34. 09 6011 9247 5752 2219 09 09 A OODPO 6 Click on DEFAULT VALUES to view Import File Security Default Values After Import Action D Deposit Oe Submitter ID y Division 1D y ECommerce JE Encrypted HTTPS y Class D Merchant Default X Prod Deliv Type bd This screen lets you select default information for Trevance to use with the transaction if certain fields are missing e ACTION for real time file transactions AUTHORIZATION is the only action accepted by First Data and Trevance through their system If you are handling a PIN based debit you can send a real time REFUND AUTHORIZATION RA transaction This is considered to be a type of authorization a refund authorization e ACTION for batch transactions The two most com mon default actions are AUTHORIZATION and SALE also known as conditional deposit e DIVISION ID This is the First Data Division ID that is assumed for all transactions submitted with a division 258 96 87 03 104 4 78 50 292 CHAPTER 18 FIRST DATA COMPASS PLATFORM SUBMITTER ID Batch only Most current installations have a single submitter ID for all transactions Select that submitter ID CLASS Many merchants have First Data assign a spe cific transaction class to each division Select MER CHANT DEFAULT to use the First Data configuration PRODUCT DELIVERY TYPE Optional field Leave it blank if you re not sure how to fill it in ECOMMERC
35. 1 2 Testing the Web Interface A sample HTML page WebIntefaceTest html is installed in Trevance S SampleHTML directory This test page allows you to send trans actions to Trevance9 directly from your web browser and see how the interface should work It is not for production use Before you begin the test make sure that e Trevance is running on a local machine e The server port is set at the default value of 8004 e The Web Request Format screen specifies the default field value separator and delimiter 42 To conduct the test 1 Make sure Trevance isn t paused If necessary click on Server then Resume 2 Right click on wb cate 3 Click on Explore 4 Click on Program Files 5 Click on the Trevance directory then SampleCode and then HTML 6 Open the WebInterfaceTest html file to view 94CHAPTER 5 TESTING AND ACTIVATING TREVANCE Trevance Web Interface Tester Enter transaction information below This forms sends information to the Trevance Transaction Gateway running on this computer wa a POST command UserID Password Action A y Account Number Exp 7 At UserlD enter the name of a web user the default is WEB 8 At Password enter the password for that web user the de fault is WEBPW 9 The Action must be A for authorization 10 Fill in the account number expiration date and amount of the transaction 11 Click on 12 You ll receive a message thr
36. 14 2 Recover 24 bee hd bee bed ee a 24s 181 143 High Availability 182 14 3 1 Copying Recovery Logs on Windows 182 MA Repair see e ear aa OAS Bee 183 14 5 Windows sa rotos e sd 183 II External Key Management 185 15 akmp 187 vi CONTENTS III Payment Processors 189 16 Chase Paymentech Solutions Direct Salem 191 16 0 1 Basic Settings 192 16 0 2 Submitters a escenas Baw ed x 193 16 0 3 DIVISIONS 4 4 4 4 4 4 4 4 4 4 bop ae eS 194 16 0 4 SEIVED e e oe os oe See G 196 16 0 5 Electronic Reports 198 16 0 6 How Failover Works 199 16 0 7 S FTP Server with NetConnect 200 16 0 8 How NetConnect Passwords Work 202 16 0 9 Merchant Perspective 203 16 0 10 Implementation Details 203 16 0 11 NetConnect Batch Password Summary 205 16 0 12 Configure Import Defaults for Batch Files 206 16 0 13 Configure Web Transaction Defaults 208 16 0 14 Required Information 213 16 0 15 Generally Useful Fields 214 16 0 16 Advanced Configuration 215 16 0 17 Important Refund Note 236 16 0 18 PayPal 3 24844484 4d ow oe EY 236 16 0 19 PayPal Process Flow 240 16 0 20 Revolution Money Revolution Card 244 16 1 Gift Cards 2k we ek a od ee ee 249 16 1 1 Gift Card Specific Fields 250 16 1 2 Gift Card Action Codes 250 16 2 Account Update escoceses A 256 16 2 1 Ac
37. 245 16 23Chase Paymentech Salem Card Present Transactions 247 16 24Gift Card Actions ooa es eae be we o 250 16 25Account Updater Action Codes 257 16 26Optional Fields for Safetech Fraud 258 16 27Safetech Fraud Response Fields 259 16 28Chase Paymentech Salem ValueLink Fields 263 17 1 Chase Paymentech PNS Disney Rewards Card Actions278 18 1 First Data Compass Debit Card Info 295 18 2 First Data Compass Credit Card 299 18 4 First Data Compass Purchase Card Level ll 301 18 5 First Data Compass Purchase Card Level lll 302 18 6 First Data Compass Electronic Checks 304 18 7 First Data Compass PIN less Debit 304 18 8 First Data Compass Bill Me Later 306 18 9 First Data Compass European Direct Debit 308 18 10First Data Compass Pay Pal 310 18 11First Data Compass Retail Credit Card Swipe 316 18 12First Data Compass Retail Credit Card Manually SA 317 19 1 Trans First Credit Card 325 XIV 19 2 19 3 20 1 20 2 20 3 A l E 1 E 2 E 3 List of Tables Trans First Purchase Card Level ll 326 Trans First Electronic Checks 327 Tsys Credit Card ula ee dodo EK ae 337 Tsys Purchase Card Level H 337 Tsys Accounts Receivable Check Conversion ARC 339 ASI Response Codes 400 Level
38. 3 3 Arrow Keys Click on To Move the selected field into the FIELDS TO EXPORT box gt Move all the available fields into the FIELDS TO EXPORT box Move the selected field into the AVAILABLE FIELDS box lt that field REDO THIS exported Move all the fields into the AVAILABLE FIELDS box no fields are exported 7 The first field shown in the Fields to Export box is the first field to appear in the record for each transaction To change 46 CHAPTER 3 CONFIGURING TREVANCE a field s position select the field by clicking on the field name Then Table 3 4 Changing Field Position Click on To Move a Field To the top spot in the box the beginning of the record gt Up one spot Down one spot To the bottom spot in the box the end of the record Trevance9 arranges each transaction record to show the fields you chose at Step 3 in the order you chose at Step 4 To return all fields to their default position with the original fields listed in their original order in the Fields to Export box click on Default 8 If necessary change the defaults under Delimiter and General Delimiter General Security Tab TF Export Field Names in First Record R Include Quotes Around Each Field C Comma F Split Approvals from Deckines C Othe Export Level 3 Detal Records 3 4 CONFIGURING EXPORTS FOR BATCH FILES 47 Step 9 an
39. Abbreviation Term Used by Your Processing Service Authorization A Sale or Conditional Deposit SorC Deposit D Refund Credit R 6 3 0 3 Activity log Trevance tracks real time transactions and batch transactions that are processed by your processing service and keeps the infor mation in a daily activity log The log includes information about the amount and type of each transaction and similar details de pending on the processing service The activity log is stored in the internal data base and automatically exported daily It can also be exported using the Archive menu This activity log file is not the same as the LOG file in the LOG directory see Log file below 6 3 UNDERSTANDING TREVANCE TERMS 109 6 3 0 4 Archive Trevance maintains an activity log that tracks processed trans actions You can export the activity log to a delimited text file with a TRA extension in the ARCHIVE directory One file stores information about batch transactions one is for batch summaries and the third is for web interface transactions You can import these files into a spreadsheet or database for reporting or analysis 6 3 0 5 Batch transactions Batches contain one or more transactions The transactions can be authorizations deposits sales and or refunds The transactions come from an application such as an order entry application that is capable of reading and writing delimited text files The a
40. CN Express9 or Payment Vault is installed e Whenever accessing the system where Trevance CN Express or Payment Vault is installed you must use two factor au thentication i e username and password plus an additional authentication item such as a token or certificate e Any integrator that has remote access to the system where Trevance CN Express or PaymentVault is installed must use and implement remote access software security pro cedures For example Change default settings in the remote access software for example change default Passwords and use unique Passwords for each customer Allow connections only from specific known IP MAC addresses Use strong authentication or complex Passwords for lo gins Enable encrypted data transmission Enable account lockout after a certain number of failed login attempts Configure the system so a remote user must establish a Virtual Private Network VPN connection via a firewall before access is allowed Enable the logging function Restrict access to customer Passwords to authorized reseller integrator personnel 387 388 CHAPTER 11 SECURE REMOTE ACCESS Establish customer Passwords according to PCI DSS requirements 8 1 8 2 8 4 and 8 5 11 2 Trevance Use of the Trevance Console is restricted to administrators logged into the same computer running Trevance Trevance may be monitored but n
41. Check the import warming messages that Trevance should generate If a message is unchecked the warning condition ignored Y WAN 0101 FIELD Includes non printable ASCII chars converting non printable chars to spaces v WAN 0102 FIELD Text exceeds length of field y chars Y WRN 0103 FIELD Text exceeds storage space as formatted storing as digits only Y WAN 0104 FIELD x is unrecognized value for this held recognized values are y v WAN 0105 FIELD Not a properly formatted US Zip Code Canadian Postal Code or UK Postal Code Trevance generates a number of import warnings that can be useful during initial development and testing but less useful during live production runs For example Trevance checks for validly formatted ZIP or Postal Codes These warnings are useful during development in ensuring the proper information is being sent to Trevance How ever in production environments where you are dealing with real life data which might be mis entered having Trevance generate these errors is not as helpful clutters up the log file and makes it difficult to locate other useful warnings and errors 8 3 SCHEDULING DATABASE MAINTENANCE 141 Warnings are disabled by selecting the Warning entry in the Configure menu Each of the import warnings in the Config ure Warnings dialog may be disabled by unchecking the associated checkbox and clicking OK 8 3 Scheduling Database Maintenance You may maintain th
42. Customer s timezone Offset in minutes from UTC FRAUD14D Fraud 14 day velocity FRAUDG6HR Fraud six hour velocity CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 260 Trevance Field FRAUDXID FRAUDADR FRAUDBRC FRAUDBRL FRAUDCXT FRAUDCK FRAUDDVC FRAUDDVT DIRECT SALEM Table 16 27 continued from previous page Description Fraud assessment ID Unique identifier for this fraud as sessment Fraud auto decision response Value Description A Approve D Decline M Manager Review Review Customer s browser s country setting Customer s browser s language setting Number of transactions associated with card Y if customer s browser allows cookies Otherwise N Fraud device browser country Country associated with device Fraud device browser local date and time 16 3 FRAUD SCORING 261 Trevance Field FRAUDDVF FRAUDDVL FRAUDDVR FRAUDDXT FRAUDEXT FRAUDFL FRAUDJS FRAUDKMF FRAUDMD FRAUDMDT FRAUDMW Table 16 27 continued from previous page Description Fraud device fingerprint A 32 character hash of sys tem identifiers considered to be constants on a device browser Fraud device layers Five 10 character description values delimited by periods that identify device properties or characteristics at the network Flash JavaScript HTTP and browser layers Fraud device region Region associated with device Fraud device transactions Nu
43. Database Performs a number of database maintenance tasks specific to the embedded Firebird database Back Up Database Copies the database to the directory you select while Trevance is running If you want to change the default archive or backup directory see Configuring Directories on page 91 5 Click on 8 4 Backing Up and Restoring the Database Manually You should back up the Trevance database regularly You may back up either automatically as described previously or manu ally Auric Systems International recommends that you schedule a nightly automatic backup of the database as described on page 161 If you are running debit cards you should also back up the recovery log directory nightly To manually back up 144 CHAPTER 8 MAINTENANCE 1 Click on Server 2 Click on Pause 3 Using Windows Explorer look under Program Files to find the Trevance directory 4 Open the Trevance directory to find the Data directory 5 Copy the Data directory from your hard drive on to a zip disk or floppy If you need to restore the database first pause and exit Trevance Then copy the backed up files over the existing files in the Trevance directory 8 5 Deleting Old Files You can delete old files from any directory however deleting old files affects Trevance s file naming Trevance always names files using the lowest available num ber For examples e ABC DNE e ABC_001 DNE
44. Divisions Server Info Division ID Alias Default Currency Description E Cancel Merchant IDs are used to identify transactions sent for differ ent categories such as the different parts of a large company mail order phone order web sales or totally different com panies as in the case of an in bound call center processing for many merchants To add a division 273 New Merchant Information Enter the configuration information for this merchant below Division ID pp Alias Hl Default Currency fs Description o O Merchant Information Name DBA MCC AMEX Merchant ID Address Go y City State Prov Zip PostalCode Country Contact Info ox _ Coca Click on m Enter your MERCHANT ID This 12 digit number is supplied by Paymentech and must be typed exactly as supplied The ALIAS field is provided for future functionality Leave it blank for now Under Default Currency click on to view a list of curren cies Currently The Trevance PNS functionality supports only US currency Leave blank for the default value Enter a DESCRIPTION This information appears only in the Trevance UI and provides a hint to you as to the use of each MERCHANT ID This information is never sent to Paymentech Enter the appropriate MERCHANT INFORMATION Note None of the MERCHANT INFORMATION is required when using Dis ney
45. ECommerce channel encrypted unsecure or SET The choices that appear depend upon a your processing service and b the information you entered when configur ing processor settings specifically the submitter and divi sion ID information 14 Click on to return to the Web Request Format screen 15 16 Under Options select either or both of the options e URL Encoded prevents the system from confusing ordi nary field characters lt and gt with specific URL characters Some field characters such as the slash in 10 06 have a very different meaning in a URL When URL Encoded has a check mark the system auto matically replaces these field characters with the correct URL code For example the date 10 06 appears in the Preview box as 10 2F06 If you remove the check mark the system assumes that the isn t an ordinary slash instead it s treated as a URL character with a URL function The default is a check mark at URL Encoded e Value is Quoted adds or removes quotation marks from around each value in a field The default is no check mark no quotes Click on w to copy the information in the preview into another application 62 CHAPTER 3 CONFIGURING TREVANCE You can paste and save the copied information using any text editor If you ever need to reconstruct the information or send it to someone the saved file is available After you click on the OK button this information also appears i
46. III Specific Fields 433 Line Item Samples aoaaa 4 os 5 435 POTN lt sa c e e asa eee eR ee ea eS 437 List of Figures 8 1 Network Installation XV Welcome Thank you for selecting the Trevance payment processing appli cation Trevance provides high speed real time authorization of transactions with high volume batch processing It is your direct connection to your processing service Trevance offers the following features depending on the ca pabilities of your processing service Simultaneously processes both real time and batch transac tions Processes real time authorizations at 30 transactions per sec ond sustained Handles batches easily exceeding 200 000 transactions Supports many methods of payment including Credit card MasterCard Visa American Express Dis cover etc Purchase card levels 2 and 3 Electronic checks ARC accounts receivable check conversion POP point of purchase check conversion PIN based debit card PINless debit card European Debit Bill Me Later im PayPal Retail card swipe as well as Card Not Present Uses Federally approved 256 bit AES encryption for sensi tive data Offers built in web interface for real time authorizations Is PCI validated Table 1 1 shows the capabilities of the different Trevance versions CHAPTER 1 WELCOME Table 1 1 Trevance Versions and Abilities
47. Model Capabilities Processing Service CN 3500 Batch only Chase Paymentech Solutions First Data ARC First National Merchant Services FNMS Credit Cards Electronic Checks PayPal Purchase Cards CN 4200 High speed and batch Chase Paymentech Solutions 50 real time transactions per second Bill Me Later European debit Google Checkout Green Dot Money Pak 1 PayPal PIN based debit PINless debit POP Revolution Card Value Link Card First Data Continued on next page 1 1 PCI COMPLIANCE Table 1 1 Continued from previous page Model Capabilities Processing Service CN 4250 High speed and batch 50 real time transactions per second Additional Functionality Auto Settlement Bill Me Later European debit Google Checkout Green Dot Money Pak 1 PayPal PIN based debit PINless debit POP Revolution Card Value Link Card Chase Paymentech Solutions First Data 1 Chase Paymentech Methods of Payment Functionality 1 1 PCI Compliance PCI in regards to software refers to the Payment Card Industry compliance rules especially the Payment Application Data Secu rity Standard PA DSS standards Trevance undergoes a third party validation to ensure it meets the PCI PA DSS requirements This ensures the software is suitable for your use within a PCI compliant environment Additionally Auric Systems International is now a validated Level 1 PCI Service Prov
48. On a Balance Inquiry transaction the account balance is re turned by Trevance in the Current Balance CURBAL field You must include this field in the set of Web Export response fields when using Balance Inquiry Note that Amount is required to be sent on a Balance Inquiry transaction Trevance requires the Amount field in all transac tions For Balance Inquiry the Amount field is ignored and not sent to Paymentech It can be set to 0 Notes e CVV and AVS not supported 16 3 FRAUD SCORING 265 e ValueLink cards are 16 digits and start with 6 They do meet LUHN 10 e Chase Paymentech supports duplicate detection on ValueLink sales transactions Duplicate parameters are the order Account Division Number and Amount of Authorization There is no duplicate detection on ValueLink Sales transac tions A merchant must check with ValueLink s Support Desk if no response is received Chase Paymentech would submit a duplicate Sale if the transaction were submitted by the merchant after having not received a response from Chase Paymentech 16 3 3 1 Response Reason Codes Following standard Paymentech codes are returned by ValueLink transactions PTI Code PTI Description 100 Successfully Approved 302 Insufficient funds 754 Account has been closed 825 Account does not exist 806 Card has been restricted 522 Card has expired 833 Division Number is Incorrect 902 System error malfunction with issuer 502 Card reported
49. Systems International Home Page When you call or e mail please have your serial number handy When you purchased Trevance the serial number and activation key were e mailed to you After you install the test or production live Trevance you can find your serial number and activation key on the Run Mode Tab of the Trevance Settings Manager Part I Installation and Configuration Installing Trevance This chapter describes the minimum and recommended system requirements for Trevance and how to install and uninstall the software on your computer system It also explains how to change the ADMIN password Trevance always installs in demonstration demo mode In demo mode you can switch among the different versions that sup port your processing service for example from a CN 3500 demo to a CN 4200 demo 2 1 Minimum and Recommended System Requirements 2 1 1 Minimum System Requirements Trevance requires e A minimum of 512 Mbytes of memory e A 1 Gigahertz Pentium Processor CN 3500 e A 2 5 Gigahertz Pentium Processor CN 4200 e A TCP IP network connection for the computer where Trevance is installed Trevance runs on any of the following platforms e Windows XP e Windows 7 e Windows Server 2008 R2 For initial installation you ll need approximately 100 Mbytes of hard disk space 2 1 2 Recommended System Requirements You should test Trevance in demo mode on your target platform to see how it perfor
50. TO ADDRESS fields ADDRESS CITY STATE ZIP for American Express AM purchase card transactions Table 19 3 Trans First Electronic Checks Sale Refund Routing Number Routing Number BillAddress BillAddress First Name First Name Bill Address Bill Address Last Name Last Name Transactions that contain the minimum information plus a ROUTING NUMBER also called a bank ID or bank routing num ber are automatically identified as electronic checks eChecks 328 CHAPTER 19 TRANSFIRST Trevance allows you to accept checks electronically that is over a secure web interface This type of transaction is designed for eCommerce style checks it is not designed for handling accounts receivable conversion ARC or point of purchase POP check conversions Place the checking account number in the ACCOUNT field and the Routing Number Bank ID or Bank Routing Number in the ROUTING NUMBER field The ACCOUNT field can contain spaces It must not have dashes gt 19 2 3 Generally Useful Fields The following fields are generally useful for most types of transac tions Refer to the on line field reference list for additional infor mation e COMMENT 1 through 4 Four 128 character general purpose fields Not sent to payment processor Use these for your own tracking purposes e CURRENCY Usually set as a default at the merchant number level and not imported Any imported value overrides the default
51. The password must have at least seven characters at Password least one character must be a number at least one Re ertes Password character must be a letter The first and last names of the user o ima Fill in the boxes under the User Information tab You may choose Web Interface or Console or Administration as the User Type The default User Type is Console 32 CHAPTER 3 CONFIGURING TREVANCE 6 Click on the Privilege Settings tab The screen that appears depends on the User Type you selected For an administrator the screen simply confirms that no privilege restrictions exist The screens for Web Interface and Console users are If you selected Web Interface as the User Type the If you selacted Console as the User Type the following following Privilege Settings are available Privilege Settings are available X New User Information User User User Information Piivilege Settings User Information Privilege Settings Web Interface Console Permissions Check to Allow Allow Transaction Types Amount Limts Pause Resume I Check Batch Files Aulhonze Refund Auth PIN Debit Oniy funds Batch Resend Batch Remove I Archive Other Cancel ok _ Coon 7 Under Privilege Settings for a web user e Select the Transaction Types Authorize only Refund Auth only or both e Type the Amount Limits under Web Interface to set the high est amount that is allowed for a single tr
52. This Directory proved batch transactions de clines are stored in the BAD file OK Export file containing only ap BATCHEXPORT batch transactions TRA Archive file containing informa ARCHIVE includes BATCH BATCH tion on batch and real time web SUMMAR and REALTIME subdirecto interface transactions ries WRN File containing copies of imported WARNING batch transactions that were im properly formatted 6 3 2 2 File names Trevance remembers the name of the import file and uses this name for all other files only the extension changes For exam ple the import file ABC IMP becomes ABC EXP ABC BAD ABC OK and so on If there is already a file with the same name in the same directory Trevance automatically adds a number to the file name to make it unique For example e ABC DNE e ABC_001 DNE e ABC_002 DNE This numbering process continues for over two billion files ABC _2147483647 DNE If you somehow exceed this number a warning message appears However to avoid the problem either give your import files unique names or regularly back up and then clear your BATCHIMPORT directories 6 3 2 3 Import file and directory The external application places a delimited text file IMP in Trevance s BATCHIMPORT directory for batch transactions 6 3 UNDERSTANDING TREVANCE TERMS 113 Trevance stores the contents of this file in its internal database and submits the transacti
53. Trevance are not acceptable by Tsys If you have a Linux or Unix box available ASI recommends you use openSSH to generate your key If this is not accessible to you please contact Auric for additional options 20 4 1 Generating 2048 bit RSA key with OpenSSH These instructions are for Linux Unix amp Mac OS X 1 Use ssh keygen to create a 2048 bit rsa key ssh keygen t rsa b 2048 f trevance t type b bits f filename 2 When prompted enter a passphrase for the new key Auric Systems strongly recommends using a passphrase 3 Key generation is now complete Note the names of the private and public key files Your private key is saved in trevance Your public key is saved in trevance pub 4 Send the public key to Tsys so that it can be installed on their SSH server In this example the public key is named trevance pub 5 Import the private key into Trevance Launch the console and pause the server if it is running 6 Select Configure Processor Settings Choose the Server Info table 7 Click the Import Private Key button 20 4 GENERATING AN SSH KEY 343 8 Enter the path to the private key file you generated in Step 1 Also enter the passphrase you used when generating the key Import Private Key File Import an extemally generated SSH private key file Specify the password used to encrypt the key file when it was generated if one was used Provide the matching public key file to your payment proc
54. Trevance reads in and parses this file storing the informa tion in its internal database 3 Trevance uses this stored information to create a file in the proper format for the payment processor 356CHAPTER 2 PROTECT STORED CARDHOLDER DATA 4 Trevance uploads the processor file to the processor 5 Trevance downloads the processor response file when it is available 6 Trevance creates an export file which includes a line for each transaction that was imported The information in the export line may be a combination of items that are stored in the database as imported and responses that are returned from the payment processor The process may be interrupted at any point and resumed if Trevance is paused or restarted Also batches may be re queued for transmission if the payment processor requests that a file be re sent This requires that Trevance retain all imported information until each step in the process is complete When the export file is generated step 6 Trevance clears CVV information from its database as soon as the export is com plete This is done through a database update statement which is always executed as part of the transaction which updates the database following the export This ensures that sensitive infor mation is not stored in the database after batch processing is com plete 2 2 2 Key Handling During Upgrade from Trevance 2 x to Trevance 3 x Trevance 3 0 requires an e
55. Ww Information Initializing Paymentech communication laye Connection established to Authorization Host DEMO This main Trevance screen may differ slightly depending on your processing service Trevance is in demo mode 7 Click on Configure 2 4 CREATING A NEW ADMINISTRATOR AND WEB USER 17 8 Click on Pause Server to Configure Items Below You are prompted to confirm Trevance is now ready for configuration Trevance installs with a default ADMIN user default pass word ADMIN that allows you to change processor settings and di rectories for example To protect your system before you change anything else delete the default ADMIN user and create a new administrator as described on page 22 2 4 Creating a New Administrator and Web User Trevance installs with a default ADMIN user and a default WEB user to get you started You can work with Trevance using these defaults But before you test Trevance and before you can send real transactions to your processing service you must replace and delete the default ADMIN user If you re using a web interface you must also replace and delete the default WEB user These changes are necessary for PCI compliance PCI standards say that you can t use any default accounts shipped with a product To help you comply Trevance refuses to run in test or production live mode if an account exists with the user name ADMIN If you re using the web interf
56. a line indicate L3 line items Here is a sample L3 line item E 2 LEVEL III LINE ITEM RECORDS 435 L3 CAP PROMO CAP 2982 50 EA 4 99 10 00 0 05 12 48 251 48 CLOTHING Y MA Y PER STUART L3 line items contain the same delimiter as the standard trans action lines typically a tab or comma The example shown above has a tab character between each field Optionally you can also surround each field with double quotes If you use double quotes you should also double quote the leading tag Use L3 instead of just L3 at the beginning of the line Aside from those options L3 items use a pre defined format as described next The following table shows the L3 item fields and the order in which they must appear You re required to fill in only the fields listed as mandatory Some fields aren t used for MasterCard and some aren t used for Visa Table E 2 Line Item Samples Field Number Name Mandatory MC Visa Description 1 Tag Yes M V Literal L 2 L3_DESCRPT Yes M V Product description 3 L3 PRODCODE Yes M V Product code 4 L3_QTY Yes M V Quantity purchased 5 L3 MEASURE Yes M V Unit of measure for example EA 6 L3 UNITCOST M V Cost per unit Continued on next page 436 APPENDIX E LEVEL II TRANSACTIONS Table E 2 Continued from previous page Field Number Name Mandatory MC Visa Description 7 L3_DISC M V Discount amo
57. a Service 416 APPENDIX D ERROR AND EVENT MESSAGES Message The Trevance server has become unstable Expanded Information Trevance has encountered a significant problem and is shutting down Suggested Action Review for Hardware Disk space or Op erating System issues Contact Auric Technical support Sup port AuricSystems com Or Call 603 924 6079 Provide Auric sup port the suggested Trevance logs below Message The database includes items that are not supported by this version of Trevance Trevance will PAUSE Please contact Auric Systems Technical Support Expanded Information Trevance found transactions in the database that are not compatible with this version or are not sup ported by the license Suggested Action Contact Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the suggested Tre vance logs below Message Unable to resume server The database includes items that are not supported by this version of Trevance Please contact Auric Systems Technical Support Expanded Information Trevance found transactions in the database that are not compatible with this version or are not sup ported by the license Suggested Actions Contact Auric Systems International Tech nical Support and Provide These Suggested Logs with Server Man agement Events Message Unrecoverable timeout error on HTTP shutdown Please shutdown the server and restart Expanded Information During an at
58. amount obtained is returned in the AUTHAMT Authorized Amount field When selecting to do simple Authorization the transaction will operate based on the Full Partial setting configured for your division at Chase Pay mentech The XCLASS field must be sent with each transaction or you can specify a default XCLASS when configuring imported fields 245 For Card Present transactions the XCLASS is P for POS retail For Card Not Present XCLASS may be set to E Ecommerce M Mail Order Phone Order R Recurring I Installment or D Chase Paymentech Default If you specify an XCLASS of D Trevance sends a blank transaction type to Chase Paymentech and the transaction type assumes the default value for the Divi sion Notes e CN 4200 supports only real time authorizations both auth and refund auth Follow up Deposit and Refund transac tions must be sent via batch e When CN 4250 receives a real time Sale transaction it does a real time Auth and if successful queues a batch Deposit for later automatic settlement When CN 4250 receives a real time Refund R transaction it automatically performs a refund auth and queues a batch refund for later settlement If you want to submit a refund authorization only which you must later settle with a batch request specify RA rather than R as the Action e Sales and Refund transactions may be sent via batches For card present transactions you must have obtained a re
59. and the encryption passwords for you You are now set to communicate with Chase Paymentech s NetConnect Batch system During your certification run Chase Paymentech will ask you to send a password change request They may ask for you to send an xml password changefile Click the Test 30 day Password Change button When you resume Trevance it will send the NetConnect password change request 16 0 8 How NetConnect Passwords Work NetConnect batch communication requires a user id and two pass words e the S FTP connection password e the zip file encryption password key 203 Since initially these are set to the same value Trevance re quests only a single password be entered Chase Paymentech requires the S FTP password be periodi cally changed Trevance supports automatic password updates for NetConnect batch using Chase Paymentech s automated pass word change request Trevance automatically changes the pass word every 30 days During testing Chase Paymentech will ask you to test the 30 day change capabilities Just click the Test 30 day Password Change button and then resume Trevance 16 0 9 Merchant Perspective Because Trevance handles password changes automatically the merchant does not know the password once the first password change occurs 30 days after installation or during certification when you click the Test button Should the merchant need to reinstall Trevance or otherwise
60. appears only encryption It can also export files encrypted using the same key Please see the user if you ve already created a documentation for details of the encrypted format server passphrase Generate Key This will generate a new key The Trevance server will store one copy of the key to use for batch file encryption and save one copy to a file you specify The key stored in the file can then be used by an extemal encryption or decryption program Generate Import Key This will copy a key from an extemal file to the Trevance server The file must contain a single 256 bit key base 64 encoded After you generate or impot Keg lo import an encryption key this message Export Key changes to The This will create a copy of the key currently being used by the Trevance server for batch Server Batch file encryption The copy will be stored base 64 encoded to a file you specify Encryption Key has been Set Export Key File The Server Batch Encryption Key has not been Set 5 To automatically generate a new encryption key go to Step 6 To import the key go to Step 11 To export the key go to Step 17 Generating a New Encryption Key 6 Click on to view 52 CHAPTER 3 CONFIGURING TREVANCE 2 This will replace an existing encryption key Are you sure you want to continue er T Olide n The encryption key is generated and stored in the database You then have the option of saving the key to an e
61. are stored for later batch submission e Console Close Batch e Web Command e Auto Settle IMPORTANT When connected to Chase Paymentech all three of these options submit transactions that were entered up to one hour before settlement time Chase Paymentech requires transactions that were run through the real time interface to not be settled for an hour This allows their systems to communicate with each other 12 0 6 1 Console Close Batch You may manually send a settlement batch at any time e Start the Trevance Console and log in e From the menu select Configure Options Note you are not prompted with a confirmation dialog Trevance immediately creates a batch submission from any stored transac tions that are at least one 1 hour old This batch is soon up loaded This method is likely to be rarely used and is here to provide a simple way to settle during testing and certification 12 0 6 2 Web Command Trevance accepts a web settlement command You must first configure a web user to send commands From the Trevance Console 177 Configure Users Select or create a user account to which commands will be sent User Type must be Web Interface e On Privileges Settings tab select Accept Commands from this User To create a settlement batch POST the following command to the web interface COMMAND batchclose amp WEBUSER user amp WEBPASS pw where user and pw are replaced by the informatio
62. as lost stolen 303 Generic decline No other information is being provided 225 Data within transaction is incorrect D 243 Data is inaccurate or missing D 521 Insufficient funds over credit limit 607 Amount not accepted by ValueLink 227 Specific and relevant data within transaction is absent D 510 Exceeds withdrawal or activity count limit 253 Invalid transaction type for order D 758 Transaction posting to account prohibited 594 Unidentifiable error ValueLink Generated CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 266 DIRECT SALEM 204 Unidentifiable Error 301 Authorization network couldn t reach ValueLink 16 4 Card Type Indicator Trevance supports the Paymentech Card Type Indicator for real time and batch transactions for certain card types To use this feature in Trevance set the RQCRDINF field to Y on either an online or batch transaction Detailed card type information will then be returned in these fields CARDCTRY The country of the issuing bank CARDATTR Additional attributes pertaining to the card CARDATTR responses may be zero or more of the following strings separated by spaces if more than one is applicable ISSREG Issuer regulated under Durbin ISSUNREG Issuer unregulated under Durbin PCL2 Purchase card level 2 support PREPAID Prepaid card PAYROLL Payroll card HEALTHCARE Healthcare card AFFLUENT Cardholders with higher limits SIGDEBIT Signature debit card PINLESS Pinless debit card POL
63. batch even though Chase Paymentech uses two different action codes e On line only e Requires original authorization code and authorization date CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 256 DIRECT SALEM 16 1 2 18 Redemption Completion Reversal Void V Reverse a prior redemption completion transaction e On line only e Original Transaction ID GCORTXID 16 1 2 19 Deposit D Redeem the amount processed in a prior authorization This is similar to the on line real time Redemption Completion Re demption amount must be the same as the amount previously authorized Note that Deposit is batch only and Redemption Com pletion is real time only Trevance uses the same action code D for both real time and batch even though Chase Paymentech uses two different action codes e Batch only e Requires original authorization code and authorization date 16 1 2 20 Refund R Add amount to the balance of an active gift card account e On line and Batch 16 1 2 21 Refund Reversal VR Reverse a prior refund transaction e On line only e Original Transaction ID GCORTXID 16 2 Account Updater Trevance has always supported the ability to download Chase Paymentech Account Updater electronic reports As of Trevance Version 2 2 15 you can also request updates dynamically via the Batch interface Account Updater transactions may only be submitted via the batch import interface Transactions with a response code of 100 16
64. click on the Real Time Chart tab 7 7 USING THE REAL TIME MONITOR AND CHART 135 Trevance Console ADMIN on Trevance for Paymentech Loca Jeg Server is RUNNING Log Batch Real Time Montor Real Time Chart Auths Deciines Poda Real Time Transactions Ext Exported declined tem 41516000000000000000 to response file C Program File Each type of transaction has its own two part bar The left part shows the total transaction count for example 5 authoriza tions the right part shows the total transaction value for exam ple 3 217 90 If you are using multiple currencies for example dollars and Japanese yen the summary totals won t make sense To see the results for each currency click on the appropriate tab The label on the tab shows either the division ID or the division description depending on how you configured processor settings You can change your view of the chart 7 7 3 Changing the Real Time Chart To focus in on part of the chart left click and drag your mouse to the right To change the image left click again and drag your mouse either left or right To restore the chart its original appear ance click on lis 136 CHAPTER 7 OPERATION Compare the following Real Time Chart screens Y Trevance Console ADMIN on Trevance for Paymentech Local aa EJ Log Batch Real Time Monitor Resi Tine Chart Here s the same graph after a drag right Not
65. deletes UTIDs this many days after they are stored in Trevance This number should be kept fairly low in order to not clutter up your local Trevance database with UTID information The intent is to keep UTIDs you may need in the near future locally in Trevance and store UTIDs you need long term in the Payment Vault Server Deleting UTIDs from Trevance does not delete them from the Payment Vault server UTID Station Identifier The Payment Vault technology is typically configured so that the application such as Trevance generates the UTID and Payment Vault stores it This approach is taken to ensure we can generate a high speed stream of UTIDs Trevance CN 4250 needs to generate UTIDs at up to 30 trans actions per second on the real time interface and generates them even more rapidly when processing batch transactions These high speeds are difficult to maintain if each and every transactions went 9 4 RETURNING UTIDS FROM TREVANCE 153 through a remote web interface Although the possibility of a collision between two UTIDs is extremely low Trevance adds a UTID Station Identifier to each UTID value This has two purposes e reduce even further the possibility of a collision between UTID values generated by two copies of Trevance e be able to track which copy of Trevance generated the UTID When Trevance starts the UTID Station Identifier defaults to the digits of the last octet of your local IP address If
66. e ABC_002 DNE e ABC_003 DNE e ABC_004 DNE In this example the next DNE file that Trevance creates is named ABC_005 DNE But suppose before that happens you delete the old files ABC_001 DNE and ABC_002 DNE In that case the next DNE file that Trevance creates is named ABC_001 DNE Therefore the number 001 doesn t guarantee that ABC_001 DNE is your oldest file To prevent problems make sure each file has a unique name and check the date of a file before deleting 8 6 SWEEPING THE DATABASE MANUALLY 145 8 6 Sweeping the Database Manually The sweep operation performs a number of database maintenance tasks specific to the embedded Firebird database Auric Systems International recommends a nightly automatic sweep as described on page 161 However if you shut down and start up frequently and if you see a drop in performance you might try a manual sweep To sweep the database 1 Click on Server 2 Click on Pause Click on File 3 Click on Sweep Database to view z Trevance Console Koo This will clean up unused space in the server database Depending on the size of the database it may take some time Do you wish to proceed now Yes No 4 Click on The sweep continues until the following message appears Trevance Console Sl Database sweep completed successfully 5 Click on 8 7 Verify Repair You can ask Trevance to check the database for consistency and make any nece
67. e Authorize A Obtain an authorization for the requested amount if available If not available approval may be given for a lower amount In either case the actual authorized amount is returned in the Authorized Amount AUTHAMT field e Deposit D Capture funds from a previous authorization Include the actual Authorized Amount AUTHAMT from the initial Authorize transaction e Refund R Return funds to the customer account e Sale S Obtain an authorization for the requested amount if available If not available approval may be given for a lower amount In either case the actual authorized amount is returned in the Authorized Amount AUTHAMT field If the transaction succeeds it is automtically captured by Chase Paymentech for later settlement i e no need for a separate Deposit e Balance Inquiry Q Return current balance in CURBAL field e Void Authorization V Cancel a previous authorization Must be for same amount as original actual auth i e the amount that was actually authed not the amount that was requested to be authed e Void Sale VS Cancel a previous sale transactions before settlement Must be for same amount as original sale i e the amount that was available authorized in the sale trans actions not the amount that was requested e Void Refund VR Cancel a previous refund Amount re quested must be for the same amount as original refund re quest CHAPTER 17 CHASE PAYMENTECH SOLU
68. entire data set much more difficult for attackers In CN Express9 4 0 there was a single encryption key that was generated at the merchant site when the merchant entered the server passphrase during configuration The key was then encrypted using the passphrase which was to be entered in two segments by two administrators The passphrase was in turn en crypted using Windows encryption DPAPI so that it could be stored and would not need to be re entered each time the system was restarted This key was used for cardholder data and for encrypting the keys for external file encryption Administrative data was en crypted by the configuration program using Windows encryption Key manager encryption improves on passphrase encryption in two ways 1 there are now multiple keys 2 users do not need to track a passphrase for the CN Express server and the server may be migrated from physical ma chine to physical machine without needing to recover the data as long as connection to the same key server is main tained CN Express 5 0 uses key server keys for both cardholder and administrative data so Windows encryption is no longer required When upgrading from CN Express 4 x to CN Express 5 0 CN Express must retain the existing key so that it can decrypt any existing data that may be stored in the database at the time of the upgrade or stored in a Payment Vault server To do so it removes the passphrase encryption from the
69. following message x 2 Are you sure you want to delete the selected user accounts e we Trevance Console 36 CHAPTER 3 CONFIGURING TREVANCE 6 Click on I Trevance displays a message like the following Trevance Console LL One user account was deleted a 7 Click on 8 Click on again to save your changes and exit the Administer Users screen 3 3 Configuring Processor Settings Trevance needs information about your processing service to communicate with your processing service s computer Most of this information varies for each processing service Before chang ing any processor settings read the relevant chapter in Part II Your Processing Service starting on page 193 and check with your processing service 3 3 1 Configuring Imports for Batch Files External applications send and receive delimited text files They send files to Trevance for processing by the processing service and then receive the results back as delimited text files Using the Configure Import screen you tell Trevance what to expect the contents and organization of each file Purchase Card Level III has a hard coded format to which import fields need to conform So there are no import or export configuration options for Purchase Card Level III see Appendix B Level III Transac tions on page 353 3 3 CONFIGURING PROCESSOR SETTINGS 37 After configuration Trevance exp
70. for specific MOP and correct Message Invalid Action Reversal sent as specified but re versal supported for Visa American Express only Expanded Information Trevance supports rules specific to Methods of Payments MOP Suggested Action Review for specific MOP and correct D 4 EVENTS 429 Suggested Trevance logs to provide to Auric Support method of payment events are Trevance Log Exception Log Socket Log Web Log Batch Upload Download Logs Batch Protocol Log Configuration Report D 4 6 Auric Cipher Engine ACE Events Message ACE Decrypt Error s Expanded Information Trevance can support Custom Encryption Decryption through the ACE interface Suggested Action Review the ACE server setting Trevance Administrative Console gt Configure gt Options gt Security gt ACE and review Merchants Internal Encryption Decryption service for proper operation Message ACE Encrypt Error s Expanded Information Trevance can support Custom Encryption Decryption through the ACE interface Suggested Action Review the ACE server setting Trevance Administrative Console gt Configure gt Options gt Security gt ACE and review Merchants Internal Encryption Decryption service for proper operation Message Error communicating with ACE server s Expanded Information Trevance can support Custom Encryption Decryption through the ACE interface Suggested Action Review the ACE server setting Trevance Administrative Console gt Confi
71. for the Chase Paymentech Solutions Paymentech Direct platform sometimes referred to as Salem Paymentech maintains redundant Direct processing facilities in their Salem NH and Tampa FL facilities Trevance CN 3500 batch only communicates with Paymentech Direct via SFTP secure Internet VPN or Frame Relay Trevance CN 4200 communicates with Paymentech Direct via VPN or Frame Relay Both VPN and Frame Relay provide highly reliable communication and rapid transaction turn around times Paymentech states that real time transactions reliably pro cess in 3 to 4 seconds Trevance provides a built in failover functionality Paymentech can provide merchants with additional network level redundant failover configurations Please contact your Paymentech represen tative for details Trevance supports both the Paymentech On Line real time Authorization service and FTP batch processing service Please refer to the Trevance README file to determine the latest Pay mentech specification to which Trevance has been certified If using SFTP Batch connection to Chase Paymentech please refer to the Trevance Automated Password Updates for Chase Paymentech Solutions Net Connect Batch SFTP document For additional documentation see the Auric Systems Interna tional web site specifically e General Trevance Support http www AuricSystems com support center trevance Additional html reference documents are available your
72. four digits are the cardholder account The three characters before that are the station identifier Previous UTID s from older versions of Trevance have 52 ASCII characters including the hyphen and look something like this AXV9JySY JaZP G8t30 3DCIiS4qC3siP7 hRjiAGgl4A AAPS 187 The last three characters are the station identifier 9 5 Batch Tokenize Only Because UTID transactions do not go to the back end payment processor all UTID transaction types may only be imported through a special UTID specific file format UTID actions are not sup ported and may not be supplied in standard transaction import IMP files There are two specific file formats for UTID operations one for import and one for export The import file is expected to have the extension TOKEN while the export file will have the extension UTID This is to distinguish these files from standard import and export files The TOKEN and UTID files unlike the configurable IMP and EXP transaction files include a fixed set of fields TOKEN Fields MRCHORDR An identifier used to match up the response with the UTID file 9 5 BATCH TOKENIZE ONLY 155 ACTION The action one of U UD UC ACCT The account number to tokenize Send for U action only UTID The UTID to delete or check Send for UD and UC actions only Does not have to reference a real order number MRCHORDR field can be used to track the submitted card ho
73. how Trevance handles an authorization transaction using the web interface Trevance CN 4200 can handle up to thirty of these transactions per second 106 CHAPTER 6 UNDERSTANDING TREVANCE Trevance web interface receives an authorization request Trevance translates the transaction into the correct format for your processing service Trevance sends the transaction to your processing service Processing service processes the transaction and sends a response back to Trevance Trevance translates the response into the form you specified and stores it in the database Trevance retums the result to you 6 2 UNDERSTANDING DELIMITED TEXT FILES 107 6 2 Understanding Delimited Text Files The external application sends transactions in a delimited text file The file may contain information about one transaction or thousands Each single transaction is called a record for example Record 1 below shows a sale transaction of 258 98 to credit card number 5240 1519 1015 1570 which has an expiration date of November 2003 Each item of information within the record is a field for example the amount of the sale 258 98 is one field and the expiration date of the credit card 11 03 is another field Each field is separated by a delimiter usually a tab or comma and is usually surrounded by quotes A typical delimited text file looks like this Field everything inside quotes Delimiter tab Quotation mark
74. is for your own use in identifying the submitter The description is never sent to Paymentech 16 0 3 Divisions Click on the DIVISIONS tab to view a screen like the following 15 16 195 Basic Settings Submitters Divisions Server Info Electronic Reports Division ID Alias Default Currency Description Cancel Divisions identify transactions as belonging to different cat egories such as the different parts of a large company mail order phone order web sales or totally different companies as in the case of an in bound call center processing for many merchants Divisions are also used to process and report on transactions in different currencies Although Paymentech allows you to set the currency value with each and every transaction it is typical and considered a best practice to have Paymentech configure a division for each currency in which you process You ll see this information again on when you configure im port files At that time the division number s and asso ciated description s are automatically listed under the DE FAULT VALUES tab in the DIVISION ID box The divisions grid is sortable Click on a heading DIVISION ID ALIAS DEFAULT CURRENCY DESCRIPTION to change the sort order To add a division click on a Type the division number under DIVISION ID This 10 digit number is supplied by Paymentech and must be typed ex actly as supplied The number must have 10 digit
75. known by only one person so that two people are required to enter the entire passphrase Each segment of the passphrase 3 5 GENERATE SERVER PASSPHRASE AND BATCH FILE ENCRYPTION KEY 49 e Is case sensitive for example ABC4567ghi1234 is different from ABC4567GHI1234 where ABC4567 is the first seg ment e Must contain both letters and numbers punctuation marks are also allowed e Must be at least seven characters long Create and archive the two passphrase segments according to your corporate policy Additional information on passphrase main tenance is available in the document Payment Application Best Practices for Trevance The server passphrase is stored in the current user s account You must set the passphrase while the Trevance server is logged in as the same user that will run Trevance in test or production mode 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Batch Files 4 Click on Encryption to view Trevance Console You must set the server passphrase before you can modify Batch Encryption settings Do you want to set the server passphrase now Ns 5 Click on to view 50 CHAPTER 3 CONFIGURING TREVANCE Set Server Passphrase X The Trevance server uses a passphrase to help protect encrypted data You must set a passphrase before you can run in test or production modes The Trevance server mu
76. manner by being overwritten multiple times before the actual deletion If this should cause excessive hard drive activity in your specific installation the second best approach is to use the One Pass Overwrite and Delete See Appendix C Secure File Deletion for details You must remove historic data such as old databases and database backups no longer being used using a secure removal tool such as SDelete for Windows e File Formats Tab Set After Importing a File to Multi Pass Overwrite and Delete After a batch file is imported it is deleted in a secure manner by being overwritten multiple times before the actual deletion e Files Tab Decrypt Files Before Import is checked Encrypt Files Before Export is checked optional better to not export sensitive data 1 3 2 Proper Log Handling Run those logs appropriate for the environment Ensure log mask ing is active e From the Advanced Tab 1 4 PAYMENTVAULT 351 Turn off all Optional Logs that you are not explicitly using 1 33 Do Not Store CVV2 Field CVV2 data should never be transmitted in batch files e From the File Formats Tab Edit Format buttons one for Import one for Export CVV CID field is not imported or exported Account field is not exported or exported masked 1 4 Payment Vault 1 4 1 Securely Delete Files Not applicable since PaymentVault does not import files 1 4 2 Proper Log Handling PaymentVault
77. non compliance with PCI DSS 4 2 Trevance PCI compliance requires that the following Trevance logs be stored for a year Auric Systems International recommends for warding these logs to a central repository e The audit log audit YYYYMMDD log contains a list of activities performed by Administrative and Console users This log contains both the user s log in name and a date time stamp at which the activity occurred e The console user log console_user_Y Y Y YMMDD log shows console log in actions This log contains a date time stamp a log in success failure message for a specific user and the IP address from which that user attempted to log in e The Trevance log trevance_Y Y Y YMMDD log shows gen eral application activity This log contains a date time stamp along with the specific action occurring within Trevance Log entries show both informative process as well as error messages 4 2 TREVANCE 371 Configure Directories ES Batch Directories Import ERES atchl mpor Export CAProgram Files Trevance BatchExport ot Decline C xPragram Files Trevance BatchDecline o Warning C Program Files Trevance Waming Reports C Program Files Trevance BatchRepots e Other File C Program Files Trevance FilesFromProcessor s M System Directories Log C Program Files Trevance Log ttl Archive C Program Files TrevanceArchive o Backup C xPragram Files Trevance Backup sm Recovery Log C P
78. on page 61 for gen eral information about import configuration 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on BATCH FILES 4 Click on BATCHIMPORTS to view Select Model Batch Import File Look in Batchimport xj e E e Ed E CreditCards txt My Recent Documents Desktop My Computer My Network File name Places Files of type Text files ba csv imp dne Cancel 5 Select the sample CREDITCARDS TXT file or any file of your own that you re using for import configuration to view 18 2 CONFIGURING TRANSACTION DEFAULTS 291 KE Configure Import BATCH FILES Fields Field Reference Columns with Data from CreditCards txt Altemate Tax Amount Alternate Tax ID AMEX Trans Advice 1 AMEX Trans Advice 2 AMEX Trans Advice 3 AMEX Trans Advice 4 Auth MOP Authorization Source Code Authorized Time AVS Requested Import File Security Default Values After Import AVS Response reser 2 Delimiter Options illAddress Apt one Fi BillAddress Country Tab BB io cio n cad BillAddress E mail V Fields Include Quotes BillAddress Home Phone C BilAddress Middle Initial Beaz BillAddress Work Phone Biller Reference C Other BML Customer Type BML Item Category A Action lt AKS R Account NIT ant lt A N 19 Expiration Date lt A N 7 6011 9796 8607 3072 11 08 5191 4090 3756 0100 11 09 5191 4090 3756 0100 12
79. password e The date and time when the password was last changed manual or automatic Whenever Trevance successfully logs into the S FTP server it updates the last working S FTP password to the password used to log in While running Trevance checks at regular intervals to see if the password was last changed 30 or more days previous If it was Trevance does the following 1 Automatically generates a new password that conforms to Chase Paymentech password rules 2 Sends a password change request file to Chase Paymentech 3 Sets the current S FTP password to the new password 4 If no last working S FTP password was recorded set the last working S FTP password to the old S FTP password Note that this does not affect the Zip file password The password change takes a few minutes to take effect and will either succeed or fail it should generally succeed as we are following all of the timing and formatting rules If it succeeds the password will change but there will be no notification If it fails the password will not change and there will be at some point a notification file in the download directory 205 Trevance always attempts to log in first with the current S FTP password if that fails it then tries the last working S FTP password That means that whether the change succeeds or not and regardless of the timing at which the change takes effect Trevance will be able to log in If during th
80. paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on REAL TIME WEB INTERFACE then the WEB REQUEST FORMAT tab to view Field Default 4 Click on x to view Field Defaults Joe These defaults will be used a transaction is received without the following fields Action A Authonze z Prod Deliv Type Division ID z ECommerce bd Class D Merchant Default X Submitter ID co This screen lets you select default information for Trevance to use with the transaction if certain fields are missing e ACTION AUTHORIZATION is the only action accepted by Pay mentech and Trevance through their real time or on line system If you are handling a PIN based debit you can send a real time REFUND AUTHORIZATION RA transaction This is consid ered to be a type of authorization a refund authorization e DIVISION ID This is the Paymentech division ID that is as sumed for all transactions submitted with a division e SUBMITTER ID Most current installations have a single sub mitter ID for all transactions Select that submitter ID e CLASS Many merchants have Paymentech assign a specific transaction class to each division Select MERCHANT DEFAULT to use the Paymentech configuration e PRODUCT DELIVERY TYPE Optional field Leave it blank if you re not sure how to fill it in 210 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM ECOMMERCE This field describes the method b
81. payment processing work flow is as follows e merchant accepts credit card on secured web site e credit card sent to Trevance through real time interface for Authorization e if Authorization is successful at payment processor Trevance converts the account number into a Unique Tracking ID UTID and returns that value to the merchant e Trevance stores the UTID and the AES encrypted account number for later retrieval e at deposit capture time the merchant sends the UTID in stead of the account number e Trevance looks up the account number from the UTID and sends the account number to the Payment Processor This approach is independent of the Payment Processor 9 1 Payment Vault Server The UTID and account information is stored in Trevance for later retrieval This works well if you only need to keep the account information around for a few hours or a few days until you send your deposit transaction However this approach is not recommended if you intend to keep your account numbers around for a few weeks or even months or years in a recurring billing situation 149 TM 150 CHAPTER 9 PAYMENTVAULT Auric Systems created the Payment Vault Server for long term storage The PaymentVault server integrates with Trevance and CN Express to provide long term storage for account information The PaymentVault server is currently available as a customiz able solution based on your specific needs Particular cu
82. submitted 401 Terminated before request submitted 500 Submitted not returned 501 Terminated before response returned If you POST a request to the web interface and the web inter face is not enabled or some other condition prevents Trevance from replying to the POST you ll receive an HTTP error message The processing service holds on to transaction data for 20 sec onds and can respond up to that time even if there s a disconnect and reconnect Therefore Trevance times out after 30 seconds Question 5 How does the front end application know that Trevanc has received a response from the processing service for example an approval or decline For batch transactions you receive an output file showing the responses 402 APPENDIX A FREQUENTLY ASKED QUESTIONS For web interface transactions you receive a text string with response codes Auric Systems International recommends that you configure transactions to include the LastActionSucceeded field This field will contain a 1 if the transaction was processed Question 6 How does Trevance resubmit transactions Trevance does not automatically resubmit transactions The application that originally sent the transaction has to re send it to Trevance Question 7 Can the real time monitor and chart display historic data Data is currently available only for the current day The day starts at midnight Question 8 When Trevance is upgraded from one revisi
83. than the length of time you typically take to do the initial deposit after an intial auth This saves the PaymentVault look up time when performing the deposit since it is still stored in Trevance Trevance transfers batches of new UTID values to Payment Vault every minute These UTID values remain in Trevance and there is now a copy of them in PaymentVault Trevance also has the ability to move the UTIDs immediately in real time When Trevance receives a UTID request it first looks to see if it has that value locally If it does not it requests the data associated with that UTID from Payment Vault and then decrypts it 9 3 Configuring Payment Vault The PaymentVault settings allow you to set up Payment Vault UTID support and connect to an optional external Payment Vault Server To configure Payment Vault settings e Click on Configure e Click on Options e Select the PaymentVault tab to view 152 CHAPTER 9 PAYMENTVAULT General Security Real Time File Extensions PaymentVault Troubleshooting Delete UTIDs After 7 Days UTID Station Identifier j 37 UTID Migration Block Size 300 Immediately Store UTIDs to Paymentault Ensure All UTIDs Migrated to Payment ault on Shutdown Payment Vault URL You can optionally specify a secondary Payment Vault URL to use for failover Secondary Payment Wault URL Use Legacy Payment Vault Encryption Cancel Delete UTIDS After Trevance
84. that directory If you are running debit card transactions you must change the location of the RecoveryLog directory This directory must be installed on a different drive than Trevance The RecoveryLog di rectory is a copy of Trevance s embedded database which stores 3 7 CONFIGURING DIRECTORIES 67 information that the processing service adds to a transaction when it s deposited You ll need the RecoveryLog if anything happens to the embedded database Since a hard disk failure is the most likely event to harm the embedded database you must locate the RecoveryLog directory on a different physical hard drive If the directories you want to change are on the same machine you re using for configuration you may change directories in either of two ways by over typing or by browsing If the Trevance console and the Trevance server are run ning on separate machines you can t browse You must change directories by over typing You can also return to the defaults at any time 3 7 1 Browsing for local configuration only To change the directories by browsing 1 Make sure the new directory already exists on your local system and that you have read write privileges to that di rectory 2 Click on Configure 3 If the server isn t paused click on Pause Server to Configure Items Below 4 Click on Directories to view i Configure Directories 7 g Batch Directories Import CAProgamFiles Trevance Batchmpot
85. the Trevance interface to First Data Authentication occurs on the web through Initiation Authentication Authorization Capture interaction with the PayPal site Sale Capture or Refund Transaction from Queued batch Must be sent prior to batch settlement A typical sale transaction would be as follows SA Set for Auth Get back a PYTOKEN Redirect to PayPal web site for authentication Use the PY TOKEN value as the PayPal Token parameter GA Get for Auth Get customer information name ship ping address etc as well as PYPAYER Auth Authorise Get back a PYTID D Capture Capture the authorization using the PYTID returned by the Auth Get back a different PYTID which refers to the capture itself 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 315 You can also work with Orders which allow multiple authen tication SO Set for Order Get back a PYTOKEN Redirect to PayPal web site for authentication Use the PY TOKEN value as the PayPal Token parameter GO Get for Order Get customer information name ship ping address etc as well as PYPAYER OO Create Order Get back a PYORDR value A Authorise from Order Get back a PYTID D Capture Capture the authorization using the PYTID returned by the Auth Get back a different PYTID which refers to the capture itself You can create contracts SC Set for Contract Get back a PYTOKEN Redirect to Pa
86. the customer to the PayPal site When the customer has completed authentication PayPal sens the customer back to your site to the RTRNURL parameter you send with the initial Set At this opint you can use the token value to complete the transaction through First Data using Trevance transactions All PayPal transactions must provide the following fields e AMT Amount e DIVISION e TENDTYPE Tender type Set to Y MRCHORDR Merchant Order Number ACTION Action Code 310 CHAPTER 18 FIRST DATA COMPASS PLATFORM The following shows e Action an English language description of the transasction type e Trevance Action The ACTION sent to Trevance e Required Fields Fields required to be sent with this trans action in addition to the standard fields documented above e Online and Batch First Data action or action taken by Trevance for transactions that are handled locally First line names the PayPal Express Checkout action Sec ond line shows the First Data Method of Payment along with First Data s Subtype For example a notation of ES A in dicates this is First Data Action Code ES subtype A Table 18 10 First Data Compass Pay Pal Action Trevance Required Fields Online Batch Action Set for Auth SA RTRNURL Set Express Payment CNCLURL ES A Set for Order SO RTRNURL Set Express Payment CNCLURL ES O Set for Billing SC RTRNURL Set Express Payment Agreement CNCLUR
87. the processing service in test mode you must e Log in as an administrator not as the default ADMIN user as described in Chapter 4 e Set the server pass key as described in Chapter 4 e Enter your serial number and activation key as described in this chapter When Trevance is in test mode your processing service re ceives transactions but doesn t actually process them 5 1 Testing Your Configuration in Demo Mode This test has two parts a test of the web interface and a test of the import and export configuration 5 1 1 Testing Your Batch Import and Export Configuration It s best to use the demo mode of Trevance when testing your import and export configuration Otherwise you ll actually sub 89 90CHAPTER 5 TESTING AND ACTIVATING TREVANCE mit the test file to your processing service You need a sample file with a IMP extension preferably a copy of the same file you used during import configuration In the following procedure CreditCards txt has been copied and renamed to Batch002 imp This is a batch file 1 Pause Trevance while you prepare a batch test file It must have a IMP extension and must be located in the BATCHIMPORT directory 2 When your file is ready click on Server 3 Click on Resume 4 Check the on screen log to see if it records an import For example Log Batch Real Time Monitor Real Time Chart 4 4 2004 8 26 29 AM i Next download attempt of transactions
88. through First Data and the Card Associations Merchants should provide a MERCHANT ORDER NUMBER with each transaction Trevance generates an order number if one is not provided If you re performing two pass authoriza tion transactions that are followed by deposits you must use the same order number for the deposit and for the autho rization e PRESENTER ID and PASSWORD Batch only Configured in Trevance and never imported e SUBMITTER and PASSWORD Batch only Usually set to a default value in Trevance since it is rare to find someone using multiple submitter IDs If you do use multiple sub mitter IDs you must import the submitter ID with each batch transaction All batch transactions must use the same submitter ID e TENDER TYPE Credit card purchase card check etc For some transactions those using credit cards checks or Bill Me Later there s no need to import the tender type It is a good practice to always import the tender type so you are prepared for new future payment methods that may require the field The following tables indicate when it s necessary to import the tender type The following tables show the minimum additional information that you must send for each method of payment the information that results in your best interchange rate processing fee These tables assume you re sending the ACCOUNT ACTION AMOUNT DI VISION ID and if necessary SUBMITTER ID Performing basic credit card and check
89. thumbnails Hidden files and folders Do not show hidden files and folders Show hidden files and folders C Hide extensions for known file types hdl 6 Make sure the Hide file extensions box is unchecked if there s a check mark click on the box to remove the check mark Y Clide on 8 Using Windows Explorer check the file extensions on your files in Trevance s BATCHIMPORT directory 9 If necessary rename the files so they only have one extension 3 1 5 Understanding Fields Trevance imports and exports fields such as account number or order date containing information about each transaction For more information about the fields available with your processing service 1 Click on Help 2 Click on Field Reference 3 1 PREPARING FOR CONFIGURATION 29 You may also access the field reference list during import and export configuration Click on Field Reference 3 1 6 Restarting the Console When It Times Out During configuration or whenever an administrator is signed on the Trevance console times out after 15 minutes of inactivity This measure helps keep Trevance secure even if the administra tor leaves Trevance open and running If you need to restart the Trevance console 1 Double click the icon on the task bar of your desktop 2 Click on 3 Log in 3 1 7 Saving Configuration Information At any time you can request a
90. to interpret the fraud status code FRAUDVD Y if the device is voice controlled Otherwise N FRAUDCTR Worst country associated with customer in last 14 days Return value uses the ISO 3166 alpha code 16 3 3 ValueLink Trevance CN 4250 provides custom support for the ValueLink processing service This functionality is available only via custom request Please call Auric Systems International for more infor mation ValueLink is supported exclusively through the real time Web interface All ValueLink functionality is supported via Chase Pay mentech s Direct On Line specification The fields required for each ValueLink action are as follows Table 16 28 Chase Paymentech Salem ValueLink Fields Sale S Balance Inquiry Q Account Account Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 264 DIRECT SALEM Table 16 28 Continued from previous page Sale S Balance Inquiry Q Amount Division ID Division ID Merchant Order Number TenderType V TenderType V Class E Class E The Paymentech Method Of Payment MOP value is deter mined in Trevance by a combination of Card Type and Tender Type For ValueLink Leave Card Type Blank or do not send it and set Tender Type to V ValueLink supports the following actions e Q Balance Inquiry e S Sale ValueLink supports conditional deposit one transaction auth and capture or auth and auth completion
91. use the same submitter ID e TENDER TYPE Credit card purchase card check etc For some transactions those using credit cards checks or Bill Me Later there s no need to import the tender type It is a good practice to always import the tender type so you are prepared for new future payment methods that may require the field The following tables indicate when it s necessary to import the tender type The following tables show the minimum additional informa tion that you must send for each method of payment not the information that results in your best interchange rate processing fee These tables assume you re sending the ACCOUNT ACTION AMOUNT DIVISION ID and if necessary SUBMITTER ID Performing basic credit card and check processing with Trevance for Paymentech Direct is simple and can be set up quickly Ask your Paymentech representative what is necessary for more com plicated transactions 16 0 15 Generally Useful Fields The following fields are generally useful for most types of transac tions Refer to the on line field reference list for additional infor mation e CARDTYPE differentiates between ChaseNet CZ credit card and CR prepaid debit e COMMENT 1 through 4 Four 128 character general purpose fields Not sent to Paymentech Use these for your own tracking purposes 215 e CURRENCY Usually set as a default at the division level and not imported e CUSTOMER IP ADDRESS Useful for trackin
92. view a screen like the following 19 1 CONFIGURING PROCESSOR SETTINGS 321 E Transfirst Basic Settings Merchant IDs Server Info Merchant ID Alias Default Currency Description 7 Cancel Merchant Numbers which TransFirst also calls Merchant IDs or ePay Account IDs identify transactions as belonging to different categories such as the different parts of a large company mail order phone order web sales or totally dif ferent companies as in the case of an in bound call center processing for many merchants You ll see the information in this screen again when you con figure import files At that time the Merchant Number s and associated description s are automatically listed under the DEFAULT VALUES tab in the MERCHANT NUMBER box 6 To add a Merchant click on ma to view 322 10 11 12 13 CHAPTER 19 TRANSFIRST New Merchant Information Enter the configuration information for this merchant below ePay Acct MID CR Account Password Alias o Default Currency cml Description AA Name NN MCC WU Cust Serv Ph PC Cancel In the EPAYACCT MID field type the value provided to you by TransFirst The ALIAS field is provided for future functionality Leave it blank for now Under Default Currency click on to view a list of cur rencies Currently only US Dollars are supported through TransFirst Enter a DESCRIPTION This description is for your own use
93. you may want to undertake some tasks in the future pause resume shut down and restart the server observe the sta tus delete a file and archive log files among others This chapter describes those operations It also describes how to disconnect console users 7 1 Pausing Resuming Exiting Launching the Console 7 1 1 Pausing or Resuming You can pause from either the Server menu or the Configure menu e Click on Server then Pause e Click on Configure then Pause Server to Configure Items Below You can resume from either the Server menu or the Configure menu e Click on Server then Resume e Click on Configure then Resume Server when Configuration Com plete 119 120 CHAPTER 7 OPERATION 7 1 2 Exiting and Launching as an Application 7 1 2 1 Exiting the Console without Shutting Down the Server To exit Trevance close the console and hide the main screen from view e Click on File e Click on Exit to view r a 2 Trevance Console has closed Would you also like to shutdown the Trevance Server Yes No The message appears only if you haven t exited Trevance before and only if no other users are logged into the server e Click on o Information on shutting down the server appears later in this chapter 7 1 3 Launching the Console from the User Interface The user interface screen appears only when Trevance is operat ing as an application not a service To launch the Trevan
94. 00 PayProcName Paymentech Engine Firebird 1 5 Directory C Program Files Trevance DATA v This report has been copied to the clipboard so you can paste it into other documents Export Configuration Fie 3 9 PRODUCING A CONFIGURATION REPORT TT 3 To export this report click on _ Eet Cortigaaion Fie to view a screen like the following E SampleCode rene E Batchoecine E Templates E BatchExport Warning I Batchimport E certificates D ComponentLicenses OFiesFromProcessor Log pensa lO RecoveryLog je Reports Save as type XML files xn Cancel 4 You may leave the Save in location and File name as is or change either one Be sure that the Save as type is always XML files and that the file name always has an XML extension 5 Click on to view a message like the following G gt Trevance Console E E Configuration successfully exported to file C Program Files Trevance Reports TEMP TrevanceConfig xml 6 Click on to return to the Troubleshooting screen 7 Click on 3 9 0 3 Import Configuration File After you export a Trevance configuration file say from instal lation A you may save it as a back up or import it either to the same installation of Trevance installation A or to a completely 78 CHAPTER 3 CONFIGURING TREVANCE different installation installation B The imported file replaces all the current configuration information in either A or
95. 1 Gift Card Specific Fields Gift Card functionality introduces a new field GCORTXID A N 40 Gift Card Original Transaction ID The GCORTXID field is returned by for online authorization transactions This field is used to identify the authorization for subsequent reversal transactions Merchants should track this number in order to support reversals Note Trevance can track the GCORTIX and it can be looked up based on the account number amount division or der number and authorization date fields but it is best practice for the merchant to track this number with the order The ability to process gift card sales is tied to the Users s R privilege Refund and Gift Cards This privilege is not assigned by default to new users The Gift Card Tender Type is G 16 1 2 Gift Card Action Codes The following action codes are applicable to Gift Cards Table 16 24 Gift Card Actions Trevance Paymentech Description Action Action Code Code IS SI Issue Account IR IR Issue Account Reversal CL SD Deactivate Close Account CR DV Deactivate Close Account Reversal 16 1 GIFT CARDS 251 Table 16 24 continued from previous page Trevance Paymentech Description Action Code AO AR HA HR AV RV BA S VS Action Code SV Reactivate Account AV Reactivate Account Reversal BA Activate Block Batch BV Activate Batch Batch Reversal SA Add Value VR Add Value Reversal BI Balance I
96. 2 PORT information 17 0 2 How Failover Works The Trevance failover mechanism works as follows e When two Socket IP connections are defined Trevance uses one as the Primary and one as the Secondary e The Primary Connection is indicated by a checkmark in the Server Configuration screen see above e All real time transactions are sent to the Primary Connec tion e Ifthe Primary Connection is unavailable disconnected Trevance switches to sending transactions to the Secondary Connec tion e If a real time transaction is sent and never received because the socket disconnects Trevance eventually times out the transaction and returns with a timeout error Trevance does not automatically retransmit the transaction The de cision to retransmit a real time transaction is left as a busi ness decision on the merchant side Retransmitting some transactions such as debit card authorizations have mone tary consequences e Ifa transaction timeout is received Trevance switches con nections CHAPTER 17 CHASE PAYMENTECH SOLUTIONS 272 PNS TAMPA e Primary socket connection can also be set manually with out pausing Trevance Select Server Primary Real Time Socket from the menu and select which socket you want to use as the Primary socket e A log entry appears whenever connections are switched 17 0 3 Divisions 1 Click on the DIVISION tab to view a screen like the following E Chase Paymentech Tampa PNS
97. 3 FRAUD SCORING 257 are successfully accepted for account update report The report is downloaded separately as an electronic report or DFR 16 2 1 Account Updater Action Codes The following action code is applicable to Account Updater Table 16 25 Account Updater Action Codes Trevance Paymentech Description Action Action Code Code UP UP Account Updater Request 16 2 1 1 Required Fields All Account Updater transactions require the following fields e ACTION e DIVISION e ACCT Trevance will also send the method of payment and an amount of 0 00 in the upload Since only MasterCard and Visa card holder accounts are acceptable in Account Updater transactions Trevance automatically recognizes what the card type is and transmits it to Chase Paymentech 16 3 Fraud Scoring Trevance supports the Chase Paymentech Safetech Fraud Scor ing capability also known as Kount for real time E commerce CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 258 DIRECT SALEM transactions with credit cards checks and PayPal This service allows merchants to configure their own fraud rules and to de termine when fraud checks will occur When implementing this service you will need to add some Kount specific code to your web site Please refer to your Chase Paymentech Safetech Fraud documentation for details 16 3 1 Additional Fields Once the Fraud functionality is activated for your account using it requires sending just a few additio
98. 3 PM 5 Waiting Newt Check a 1243 13 1000000 003 Next download attempt of transactions from Batch002 mp at 4 3 2004 12 43 13 PM The columns on the Submittall Queue screen give you the fol lowing information Table 7 3 Submittal Queue Column Information File The name of the imported file in the queue Continued on next page 7 6 USING THE BATCH SUBMITTAL QUEUE 129 Table 7 3 Continued from previous page Column Information Status Whether the transactions in the file e Are being imported Importing Imported e Are being uploaded Uploading Uploaded e Are waiting the five minute delay between the time Trevance uploads and the time it checks for down loads the time of the next check is given Waiting Next check at e Are being downloaded Downloading Downloaded e Are being exported Exporting Exported Upload As The name of the file that your processing service recognizes Trevance automatically assigns this name Uploaded The date and time when Trevance sent the file to your processing service Several additional status messages may also appear on your screen For example if Trevance is paused while transactions are being processed you might see these messages Ready to Format for Upload Ready to Upload Waiting Paused Ready to Download or Ready to Export Also if the processing fails for any reason for example because of a power failure you might see
99. 48 Tax amount for this item 10 L3ITEMAMT N 12 1 251 48 The amount for this line item 11 L3_COMDCODE A N 12 CLOTHING Commodity code used to clas sify the item purchased 12 L3_INCLTAX Y N Y Indicates whether tax amount is included in item amount Y if item amount includes tax amount N if item amount does not include tax amount Paymentech calls this field the gross net indicator 13 L3_TAXTYPE A N 4 MA Text description of the type of tax MA Massachusetts 14 L3_ISDISC Y N Y Is the amount discounted Y if discounted Otherwise N 15 L3 COMMENT A N 20 PER Available for internal com STUART ments Not sent to Pay mentech NOTES 1Maximum of 12 digits for Visa but only 9 digits for MasterCard Trevance supports up to 98 L3 items The 99th line item and beyond is not imported The excess records are sent to the E 4 EXPORTING 439 WARNING folder The order in which L3 items are imported is significant Items are sent in the same order in which they are imported E 4 Exporting L3 line items can be exported as well as imported When exported they appear immediately following the transaction that includes the order information Exporting is controlled by the EXPORT LEVEL 3 DETAIL RECORDS checkbox in the EXPORT CONFIGURATION dialog The delimiter and optional quotes are controlled by the main export settings F Contact Auric Systems International Technical Support You can contact Auric Systems Inter
100. 9 7 1 2 Exiting and Launching as an Application 120 7 1 3 Launching the Console from the User In terface o oo ewe ee oe eS hs 120 7 2 Shutting Down and Restarting the Server 121 7 2 1 When Trevance Is an Application 122 G22 When Trevance Is a Service 122 7 3 Changing the Log Batch and Monitor Screens 123 7 3 1 Changing the Width of Columns 123 7 3 2 Sorting Information 123 7 4 Understanding the Events Log 123 iv CONTENTS 7 4 1 The Log Screen a aes kde eR EES 124 7 4 2 The Log Files cosas ro ee OH 125 7 5 Tracking Recent Batches 125 7 6 Using the Batch Submittal Queue 127 7 6 1 Viewing the Submittal Queue 127 7 6 2 Removing a Batch pune a eo ee 4 129 7 6 3 Resending a Batch 131 7 6 4 Checking Response Files 132 7 7 Using the Real Time Monitor and Chart 132 7 7 1 Viewing the Real Time Monitor 133 7 1 2 Viewing the Real Time Chart 134 Gila Changing the Real Time Chart 135 7 8 Disconnecting Console Users 136 7 8 1 Disconnecting Users When Trevance Runs Asan Application 137 7 8 2 Disconnecting Users When Trevance Runs As a Service km ko Rae ee ad eo wae 138 8 Maintenance 139 8 1 Maintenance Contract 4 139 8 2 Configure Warnings once oe Be eee a we RS 140 8 3 Scheduling Database Maintenance 141 8 4 Backing Up and Restoring the Databa
101. A N 19 gt indicates an alphanumeric field that has a maximum size of 19 characters Each record is a transaction The records in your text file appear nicely separated on the screen with the fields in in dividual columns 6 Make sure that every column has the correct field name as signed to it For example the column called Account must actually show account numbers If a column is marked Unassigned and you don t assign a field name to it that column of information isn t sent to your processing service Unassigned columns aren t imported To change column names you have three choices use the default button copy a previous configuration or select fields one by one e Click on Dota Trevance provides the default fields and arranges them in a default order You can click on the default button at any time e Click on 2 to view a screen like the following 40 CHAPTER 3 CONFIGURING TREVANCE Select Copy Source y This will copy the settings helds field sequence etc from one type of import export specification to another Copy Settings From Batch Export This screen lets you copy a configuration that you ve created previously for batch export Click on Trevance copies the column names and their order from the export configuration 3 3 CONFIGURING PROCESSOR SETTINGS 41 e Click on a field name in the Fields list then drag the name to the head of the column If you pla
102. ASE MANAGEMENT gfix mend user userid password passwd prod orig fdb Now back up the database gbak b g user userid password passwd prod orig fdb prod orig fbk Now restore it as good gbak c user userid password passwd prod orig fbk prod good fdb Check to see there are no problems gfix v f user userid password passwd prod good fdb You should not see any errors If there are errors contact Auric Systems International technical support for further in structions Shut down Trevance Rename prod fdb to prod fdb bad Copy prod good fdb to the data directory Rename prod good fdb to prod fdb 10 Restart Trevance Part Il External Key Management 185 15 akmp Trevance supports external key management services The var ious key management services are supported via the Auric Key Management Proxy or AKMP The AKMP allows new key management services to be added without needing to update the basic Trevance application AKMP is installed on your system and is part of the basic Trevance installation The AKMP is not required to be configured for Demo mode In demo mode Trevance uses a hard coded demo encryption key since you are only using demo account numbers When you are ready to move to test and production refer to the instructions below 1 Select Configure followed by Key Manager E Trevance Console ADMIN on Trevance CN 3500 Transaction Gateway fo
103. Amount field is value to put on card 16 1 2 7 Reactivate Account Reversal AR Reverse a prior reactivate account transaction e On line only 16 1 2 8 Activate Block Batch HA Activate a block of up to 100 gift card accounts at one time e On line only e Account number is first account number in the block e Amount is the value to put into all accounts e Number of accounts to activate is sent in the Block Size BLOCKSZ field CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 204 DIRECT SALEM 16 1 2 9 Activate Block Batch Reversal HR Reverse a prior block activation transaction e On line only e Amount is value used in the original block activation trans action e Account number is the first account number in the block e Number of accounts to deactivate is sent in the Block Size BLOCKSZ field e Original Transaction ID GCORTXID 16 1 2 10 Add Value AV Add amount to value of an active give card e On line and batch 16 1 2 11 Add Value Reversal RV Reverse a prior add value transaction e On line only 16 1 2 12 Balance Inquiry BA Obtain the current balance on a gift card account e On line and Batch e Balance returned in the Current Balance field CURBAL 16 1 2 13 Redemption Sale S Check the available balance on the gift card account and if the balance is sufficient redeems the amount from the account e On line only 16 1 2 14 Redemption Sale Reversal Void L Reverses a prior redemption transa
104. B except for passwords run mode serial number and activation key 1 Click on the File menu 2 Click on Import Configuration File to view a screen like the fol lowing Import Configuration File JE Look in CQ Trevance aede kad Archive E SampleCode Badup Temp Recert Betchdeciine 1 Templates O BachExport Owanng 3 Batchimport Certificates Desktop O ComponentLicerses Data Docs FilesFromProcessor My Documents a opens jRecoveryLog My Computer Reports MyNewak Flename fo Fiesct type KML files ami z Cea 3 Browse to the location of the XML file you exported The only type of file you can import is a XML file that was ex ported by Trevance using the Export Configuration File option 4 Click on to view 3 9 PRODUCING A CONFIGURATION REPORT 79 The following items are installation specific and must be entered manually 5 Enter the appropriate passwords 6 Click on to view a confirmation message for the passwords Please confirm changes to the Password for User ADMIN by re keying below Password for User ADMIN cm 7 Re enter your passwords and click on each time 8 Click on to view i Configuration successfully imported from file C Program Files Trevance Reports TEMP TrevanceConfig xml 80 CHAPTER 3 CONFIGURING TREVANCE 3 10 Switching between Versions in Demo Mode By default Trevance installs as a CN 3500 In th
105. E This field describes the method by which ecommerce transactions are received The most com mon is ENCRYPTED HTTPS indicating a secured web transaction You can set a different default value at First Data for each division If you use that method select MERCHANT DEFAULT 18 2 2 Configure Web Transaction Defaults Refer to Configuring the Real Time Web Interface on page 80 for general information on web transaction configuration 18 2 CONFIGURING TRANSACTION DEFAULTS 293 The Web Interface accepts real time transactions through an HTTP Interface IV Enable Web Interface General Web Request Format Web Response Format Transactions are accepted by Trevance via HTTP POST in tagged format A short name for each field is given along with the field s value as shown in the preview Any held may be sent with any transaction and fields may be sent in any order Preview WEBUSER wWEBSWEBPASS WEBPWiMRCHORDR 12345578904BCDEFSACCT 5465926239 lt y Select Fields for Preview Delimiter Options C Tab Y URL Encoded Value is Quoted 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on REAL TIME WEB INTERFACE then the WEB REQUEST FORMAT tab to view 4 Click on EE to view These defaults will be used if a transaction is received without the following fields Action A Authorize y Prod Deliv Type Division ID
106. ER AND YOU ARE NOT AUTHORIZED TO USE THIS PROGRAM 1 LICENSE You have the non exclusive right to use the following Trevance tm se Tf you accept the terms of the agreement click I Agree to continue You must accept the agreement to install Trevance eee Lage 4 Read the license screen Print it if you like Click on Heee to accept the license and to view a screen like the following Trevance Setup LJ ole Choose Components T Choose which features of Trevance you want to install S Check the components you want to install and uncheck the components you don t want to install Gick Next to continue Select components to install Y Trevance Y Management Tools Space required 41 5MB 5 Do one of the following 2 2 INSTALLING TREVANCE 13 Table 2 1 Installing Trevance Install Procedure Notes TREVANCE AND MANAGEMENT Check mark at both items Recommended TOOLS default TREVANCE ALONE Remove check mark next to Management Tools Not recommended MANAGEMENT TOOLS ALONE Remove check mark next to Trevance Transaction Gateway Used for monitoring Trevance from a remote system If you install just the management tools you can install Trevance later by repeating this installation procedure from Step 1 At Step 5 remove the check mark from Management Tools but leave the check mark at Trevance Transaction Gateway 6 Click on to view a screen like the followi
107. First Name Bill Address First Name Bill Address First Name Bill Address Last Name Bill Address Last Name Bill Address Last Name The EDD Country Code EDCNTRY indicates the country in which the customer s bank is located It must be one of the fol lowing e AT Austria e BE Belgium e FR France 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 309 e DE Germany e NL Netherlands e GB United Kingdom The EDD Bank Sort Code EDBSC identifies the customer s bank Each country has its own bank sort code format The EDD RIB Code EDRIB is the bank account checksum This is optional and used only in France 18 3 5 PayPal Trevance supports PayPal transactions through both the real time and batch interfaces Note that the Trevance CN 4250 pro vides support for real time transaction types not supported by First Data such as Sale Capture and Refund by converting the real time request into a queued batch transaction Auric appreciates your setting the ButtonSource parameter in your initial call to the PayPal website to AURICCN_EXPRESS_ECUS PayPal transactions require integration with the PayPal website To support PayPal transactions with Trevance you first send one of the Set transactions for example SA to Trevance Trevance makes a call to First Data which returns a PayPal token on suc cess Trevance returns this value in the PYTOKEN field Using this token you redirect
108. JONES Password A Password Reenter Passwort Lx ca 6 Change any information you want to change under the User Information and Privilege Settings tabs 7 To change the password click on the following Re Enter Password E Enter the current password for ADMIN Password Cancel to view a screen like 8 Type your administrator password in the Password box The password appears as a series of asterisks _ 9 Click on to view First Name JOHN Last Name JONES Password Password Re enter Password 3 2 ADDING DELETING AND ADMINISTERING USERS5 10 Type the new password into the unlocked Password box The password appears as a series of asterisks 11 Type the password again in the Re enter Password box The password appears as a series of asterisks 12 Click on to enter the changes you ve made 13 Click on to save your changes and exit the Administer Users screen 3 2 3 Deleting a User 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Users to view Administer Users User Fast Name Last Name 2 ADMIN Administrative User WEB Web User DONES Sohn Sones Edt Add Delte Cancel 4 Click on the user s name in this case JJONES 5 Click on _ Delete to remove the user from the user list Trevance displays the
109. L ES C Set for Auth w SB RTRNURL Set Express Payment Billing Agreement CNCLURL ES B Set for Order w SE RTRNURL Set Express Payment Billing Agreement CNCLURL ES E Continued on next page 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 311 Table 18 10 Continued from previous page Action Trevance Required Fields Online Batch Action Get for Auth GA PYTOKEN Get Express Payment EG A Get for Order GO PYTOKEN Get Express Payment CNCLURL EG O Get for Billing GC PYTOKEN Get Express Payment Agreement EG O Get for Auth w GB PYTOKEN Get Express Payment Billing Agreement EG B Get for Order w GE PYTOKEN Get Express Payment Billing Agreement EG E Auth A PYTOKEN Do Express Payment PYPAYER ED A Auth from Order A PYORDR Do Auth AU O Do Auth AU O Auth from A PYCID Do Reference Do Reference Contract AU B AU B Reauth A PYTID Do Re Auth Do Re Auth AU A AUA Auth w Billing AB PYTOKEN Do Express Payment Agreement PYPAYER ED B Continued on next page 312 CHAPTER 18 FIRST DATA COMPASS PLATFORM Table 18 10 Continued from previous page Action Trevance Required Fields Online Batch Action Auth from Order AE PYORDR Do Auth Do Auth with Billing AU E AU E Agreement Sale S PYTOKEN Do Express Payment PYPAYER ED A Queue to batch on success as Do Capture RG P Sale S PYCID Recurring Sale RG R Refund Memo R CAPDATE Memo Po
110. MES and or place quotes around the values for each field VALUE IS QUOTED To choose these options click on the box to place a check mark next to the option The default is no check mark You can also change the FIELD SEPARATOR from the default equal sign to any other character Here s how the preview looks with each combination of op tions the delimiter is and the field separator is 66 CHAPTER 3 CONFIGURING TREVANCE Table 3 10 Preview Include Field Name Value is Quoted Sample Result No No 12345678901234567 10 06 Yes No ACCT 12345678901234567 EXP 10 06 No Yes 12345678901234567 10 06 Yes Yes ACCT 12345678901234567 EXP 10 06 10 Click on Deus if you change your mind and want to re turn to the original defaults in all cases 11 Click on loop to copy the information in the preview into another application You can paste and save the copied information using any text editor If you ever need to reconstruct the information or send it to someone the saved file is available After you click on the OK button this information also appears in the configuration report Click on 3 7 Configuring Directories Trevance installs with default directories where it automatically sends and receives the appropriate files If you decide to change these defaults you may set up or select any directory as long as Trevance has read write privileges to
111. N less debit is also known as debit bill payment and is only available to select industries including utilities insurance telecom munications cable financial and government entities Regula tions currently do not allow PIN less debit to be used for recurring or installment payments The PIN less debit is a single message transaction As soon as the transaction is authorized money is removed from the cus tomer s account First Data takes the debit authorization data and stores it in a Debit Database When you send a deposit transac tion in the daily batch file First Data matches the deposit against the Debit Database When a match occurs money moves to your account If no match occurs First Data reports the exception to the merchant Debit authorization A and Sale S transactions must occur through the real time interface An exception to the above is that recurring Auth and Sale transactions may be submitted via batch This requires the Re curring flag to be passed with the transaction This functional ity allows PINless debit cards to be used for recurring payment purposes The very first transaction still must go through the real time interface k Online Deposit and Sale transactions require a Trevance CN 4250 Trevance cannot automatically recognize a PIN less debit transaction because the fields passed for PIN less debit are iden 306 tical to the fields passed for a credit card transaction and s
112. NCE Click on Trevance displays a message like the following Trevance Console E J One user account was deleted Click on Click on again to exit the ADMINISTER USERS screen Click on 10 From now on when you log in as an administrator you must use the new password You can t log in without your password 2 4 3 Creating a New Web User 1 Click on Configure 2 Click on Users to view Administer Users E User First Name Last Name a WEB Web User x a bs 0 cel 3 Click on sos to view 2 4 CREATING A NEW ADMINISTRATOR AND WEB USER 21 A unique name for the user account any seat combination of 4 to 20 characters This name e automatically appears in full capital letters The user name is not case sensitive JOE and joe are User Information Priviege Settings identical User Type Web Interface Console The type of user In this case the type must be Web gt Interface Adhiriaator est Nome EAN LastName A unique password you ll see in the boxes por The password must have at least seven characters at Password least one character must be a number at least one character must be a letter The first and last names of the user Re enter Password Trevance allows multiple web users Each user must have a unique password Ca on 4 Fill in the boxes under the USER INFORMATION tab You mus
113. PNS the Chase Paymentech real time interface supports Authorization transactions only It does not support Deposits or Refunds and thus does not support Conditional Deposit Sale transactions which are a one step Authorization and Capture The Trevance real time web interface supports these actions by capturing transactions for later batch settlement 12 0 5 1 Deposits and Refunds When Trevance receives a real time Deposit or Refund request through the web interface it stores the transaction for later batch submittal and returns response codes indicating a successful trans action back through the web interface This success indicates only that the transaction has been stored for later submission Until these transactions are presented to the processor it is uncertain they will succeed You must always check your batch export files to ensure they have all been successful If any of the Deposit or Refund transactions in a batch fail you will receive an email notifying you of such This is a reminder to check your exports when a transaction did not succeed 175 176 CHAPTER 12 4250 FEATURES 12 0 5 2 Conditional Deposits Sales When Trevance receives a Sale transaction it sends an Autho rization request to Chase Paymentech If that Authorization suc ceeds it then stores a Deposit request for later submission 12 0 6 Settling Stored Transasctions Trevance provides three ways to submit the real time transac tions that
114. Protocol Log Configuration Report e Windows event logs D 4 2 Error Reading or Writing Events Message Error writing to batch log Duplicate batch Expanded Information Trevance can t update the batch log while attempting to export a batch Most likely cause is improper recovery from recovery log for example saving a recovery log ex porting a batch and then recovering from the out of date recovery log and exporting it again Suggested Action Use non out of date recovery log in recovery process Message Error writing to log file s Expanded Information Trevance could not successfully write to a log file Suggested Action Review for Open log Disk space or other application that may have the log open Message Error Can t access directory s Expanded Information Trevance could not successfully access a directory Suggested Action Review Directory location and status Disk space or other reasons for directory access failure Suggested Trevance logs to provide to Auric Support for read write error events are Trevance Log Exception Log D 4 EVENTS 419 Socket Log Web Log Batch Upload Download Logs Batch Protocol Log Configuration Report Windows System Event logs D 4 3 Real Time Events Note Socket connection errors follow this template Error Error connecting to Authorization Host lt host port gt lt PRIMARY SECONDARY gt SOCKET Socket Error lt er ror gt lt error gt
115. Real Time Processing Socket IP Pott Vv Socket 21P Pott y Batch Message way SFTP Y Enable Batch Processing SFTP Test CAT IP SFTP Production IP SFTP DR Production IP Generate Keys for Public Key Authentication Cancel The server information is used to configure communications with First Data The real time and batch systems each have their own con figuration Although most installations perform both real time and batch operations you can disable either one if you like For exam ple if you already have a batch operation process in place you can use Trevance to add real time operations while continuing to perform your existing batch actions 25 Fill in the REAL TIME SOCKET boxes based on information you receive from First Data The IP fields are in the form of dotted notation for ex ample 192 1 1 42 The real time interface has a separate socket 288 CHAPTER 18 FIRST DATA COMPASS PLATFORM Suppose First Data provides an address that looks like this 192 1 1 42 8443 In the SOCKET IP type 192 1 1 42 In the SOCKET PORT type 8443 Trevance allows you to optionally configure a primary and failover Socket IP If you are not configuring failover capa bilities enter only the first Socket IP value Select Primary Socket Connection This defaults to the first Socket IP address If you want to select the second as your primary click the checkbox next to the Socket 2 IP field
116. Rewards Cards This information provided for future expansion to other payment methods such as credit cards checks etc Name is your company name 274 10 11 12 13 14 CHAPTER 17 CHASE PAYMENTECH SOLUTIONS PNS TAMPA If you have a DBA Doing Business As tradename cor porate division etc enter it here MCC and AMEX Merchant ID are specific to MasterCard and American Express transactions Since only Disney Re wards cards are currently supported these fields will be blank Enter your Business street address City State Prov and Zip Postal Code Enter your Country code Currently only US is supported Enter your contact information This is typically the cus tomer contact 1 800 number Click on 17 1 Configuring Transaction Defaults This section covers Paymentech PNS specific details of real time web configuration 17 1 1 Configure Web Transaction Defaults Refer to Configuring the Real Time Web Interface on page 80 for general information on web transaction configuration 1 2 Click on CONFIGURE If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW Click on REAL TIME WEB INTERFACE then the WEB REQUEST FORMAT tab to view the Web Transaction form 17 1 CONFIGURING TRANSACTION DEFAULTS 275 o Web Interface Settings f ES The Web Interface accepts real time transactions through an HTTP Interface V Enable We
117. S Purchase card level 3 support 16 4 CARD TYPE INDICATOR 267 Detailed card information is supported for auth sale query and verify actions for the following card types e Visa e Mastercard e Discover e JCB 17 Chase Paymentech Solutions PNS Tampa Trevance CN 4250 provides custom support for Disney Rewards Card via the Chase Paymentech Solutions PNS Tampa platform All Disney Rewards Card functionality is provided through the CN 4250 real time Web interface There is no batch interface to the Rewards functionality Support for Chase Paymentech Solutions PNS is provided on a custom basis Please contact Auric Systems International for additional information on this capability Trevance CN 4250 communicates with Paymentech PNS via VPN or Frame Relay Both VPN and Frame Relay provide highly reliable communication and rapid transaction turn around times Paymentech states that real time transactions reliably process in 3 to 4 seconds Trevance provides a built in failover mechanism Paymentech can provide merchants with additional redundant fail over configurations Please contact your Paymentech representa tive for details Trevance currently supports only the Paymentech PNS On Line realtime service It implements the PNS ISO Formats in Host Capture mode When setting up with Paymentech PNS please request them to select Host Capture and to allow up to 10 simultaneous asynchronous transactions Please refer to the Tr
118. Server for Encrypted Account e All other decryption failures ACE Decrypt Error for EACCT EACCT specific ACE error Possible log messages e ACE Decrypt Error specific ACE error Response values e ACCT Blank e EACCT Imported EACCT e ASIRESP According to primary transaction but will be related to missing account number e RESPTEXT Accoring to primary transaction but will be related to missing account number See below for specific ACE Errors 11 3 4 1 Specific ACE errors These are the specific ACE errors referenced above Errors Between Trevance and ACE ACE Server Timeout for example if ACE server not avail able Socket Error 10060 Connection timed out Other socket errors will have a similar format Errors Returned by ACE Sever Unknown Encryption Method 01 Unknown Encryption Method 174 CHAPTER 11 ACE AURIC CIPHER ENGINE ACE Error communicating with External Server 90 Server Error Text Error returned by External Server 92 Server Error Text 12 4250 Features The Trevance CN 4250 contains several additional features some of which are processor specific e Real time conditional deposit emulation Chase Paymentech e Auto settle Chase Paymentech e ValueLink cards Chase Paymentech e Disney Rewards cards Chase Paymentech PNS 12 0 5 Real Time Conditional Deposit Emulation Except for ValueLink Salem Direct and Disney Rewards Cards Tampa
119. T Table 19 1 Continued from previous page Authorization Deposit Sale Refund Authorization Date Authorization Code Transactions that contain the minimum information plus an expiration date are automatically identified as credit card trans actions Sending a C in the TENDER TYPE field explicitly identifies credit card transactions Credit card account values can contain spaces or dashes Table 19 2 Trans First Purchase Card Level 11 Authorization Deposit Sale Refund Expiration Date Expiration Date Expiration Date Expiration Date Purchase Order Purchase Order Number Number Tax Tax Ship To Address Ship To Address AM AM Tender Type Tender Type Authorization Code Continued on next page 19 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 327 Table 19 2 Continued from previous page Authorization Deposit Sale Refund Authorization Date Purchase card level IT transactions require the same minimum information as a credit card transactions plus several additional fields American Express MasterCard and Visa accept level IT trans actions Purchase Card account values can contain spaces or dashes o You must explicitly identify Purchase Card transactions by importing P in the TENDER TYPE field You must provide the amount of tax even if it is 0 00 TransFirst recommends providing the SHIP
120. THE BATCH SUBMITTAL QUEUE 127 Table 7 2 Continued from previous page Column Information Refunds The total number Count and amount Amt of refund transactions in the batch 7 6 Using the Batch Submittal Queue Trevance has a queue that shows the point where each batch transaction is in the submittal process The Submittal Queue lists imported batch files currently in the Trevance system The queue describes each imported file and tells you its status for example importing uploading waiting downloading or exporting When Trevance has exported all the transactions in the file to your external application the file disappears from the queue When the file returns from the processing service it automatically shows up on the Recent Batches list From the queue you can check response files remove a batch resend a batch and check response files These procedures should be used with care especially removing and resending a batch 7 6 1 Viewing the Submittal Queue Click on the Batch tab to view 128 CHAPTER 7 OPERATION a Tr Log Batch Real Time Monitor Real Time Chart Recent Batches ay Last 30 Days Transactions Sales Refunds Import Fite Date Time Submittes Count Amt Count Ame DEMO Count Amt Submittal Queue File Count Status Uploaded As Uploaded Batch001 mp 5 Waiting Next Check at 12 43 07 000000 002 4 3 2004 12 38 07 PM Batch002 mp 4 3 2004 12 38 1
121. TIONS PNS TAMPA 278 Table 17 1 Chase Paymentech PNS Disney Rewards Card Actions Auth Only Sale A S Account Deposit D Account Refund R Account Balance Inquiry Q Account Void V Void Sale VS Void Refund VR Account Account Account Account Account Account Division ID Division ID Division ID Division ID Division ID Merchant Order Merchant Merchant Order Merchant Order Number Order Number Number Number TenderType TenderType TenderType TenderType TenderType R R R R R Class Class Class Class Class Exp Date Exp Date Exp Date Exp Date Exp Date CVV2 CVV2 CVV2 CVV2 CVV2 First Name First Name First Name First Name First Name Continued on next page Last Name Last Name Last Name Last Name Last Name Address 1 Address 1 Address 1 Address 1 Address 1 Zip Code Zip Code Zip Code Zip Code Zip Code Authorization Code 17 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 279 Table 17 1 Continued from previous page Auth Only Sale Deposit Refund Balance Inquiry Void V Void Sale VS A S D R Q Void Refund VR Authorization Date First Name and Last Name are optional and not sent to the processor 17 2 3 Generally Useful Fields The following fields are generally useful for most types of transac tions Refer to the on line field
122. The following table lists the most important information about debit cards Table 16 1 Chase Paymentech Salem Debit Card Item Applies to Applies to PIN Less PIN Based Authorizing a debit card automatically removes money from yes yes the customer s checking account into Paymentech s You cannot reverse this authorization yes no A refund authorization automatically adds money to the no yes customer s checking account Depositing a debit card moves money from Paymentech s yes yes account into your account You cannot void a debit authorization yes no You cannot Auth for a dollar to verify the debit card is valid yes yes If you try to Auth for a dollar you remove 1 00 from the customer s checking account You must deposit the exact same amount as you authorized yes yes If you authorize a debit transaction the money is removed yes yes from the customer s account but then you have to deposit the authorized transaction to put the money in your account If you don t deposit the money won t be put into your account Continued on next page 213 Table 16 1 Continued from previous page Item Applies to Applies to PIN Less PIN Based There is no SALE transaction type only real time authoriza yes no tion followed by a batch deposit There is no REFUND transaction yes yes Authoriz
123. This value is used for tracking trans actions through FNMS and the Card Associations Merchants should provide a MERCHANT ORDER NUMBER with each transaction Trevance generates an order number if one is not provided If you re performing two pass autho rization transactions that are followed by deposits you must use the same order number for the deposit and for the au thorization A unique order number for each transaction 336 CHAPTER 20 TSYS helps reporting and reconciliation but is not mandatory for FNMS e MERCHANT IDENTIFIER AND MERCHANT NAME Configured in Trevance and never imported e TENDER TYPE Credit card purchase card check etc For some transactions those using credit cards there s no need to import the tender type It is a good practice to always import the tender type so you are prepared for new future payment methods that may require the field The following tables indicate when it s necessary to import the tender type The following tables show the minimum additional informa tion that you must send for each method of payment not the information that results in your best interchange rate processing fee These tables assume you re sending the ACCOUNT ACTION AMOUNT and MERCHANT NUMBER 20 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 337 Performing basic credit card and check processing with Tre vance for FNMS is simple and can be set up quickly Ask your FNMS representative what is n
124. Timeout error waiting for active HTTP threads to complete Clearing DB request queue Expanded Information May occur during pause and shutdown if web servicing threads become unresponsive Suggested Action None Message Web Interface s Server Error s Expanded Information An error occurred while attempting to start the web interface Suggested Action Review the Web interface settings Trevance Administrative Console gt Configure gt Real Time Inter face Message Web Interface s Server not started Expanded Information The Trevance CN 4200 and CN 4250 feature a Web Interface for Real Time Transactions Trevance in dicates that the web interface did not start Suggested Action Review the Web interface settings Trevance Administrative Console gt Configure gt Real Time Inter face 424 APPENDIX D ERROR AND EVENT MESSAGES Suggested Trevance logs to provide to Auric Support for Real Time events are Trevance Log Exception Log Socket Log Web Log D 4 4 Batch Events Message Batch conversion failed s Expanded Information There was an error in converting a batch to payment processor specific format The error message should con tain more information about the cause of the error Suggested Action Review error message and take appropriate action Message Exported batch file s contains d items that failed to settle Please review exported file Expanded Information Trevance indicates that the Batch con tains
125. Trevance User Guide Auric Systems International Payment Processing Simplified 19 August 2013 Version 3 0 Copyright 1994 2013 Auric Systems International All rights reserved Contents 1 Welcome 1 1 1 PCI Compliance ecc iia 3 1 2 P sswords Liar a Inan Re ee ESS 3 1 3 Access to the Underlying Operating System 4 1 4 Encrypting Sensitive Data 4 1 5 Submitting Transactions through the Web 4 1 6 Contacting Auric Systems International 4 I Installation and Configuration T 2 Installing Trevance 9 2 1 Minimum and Recommended System Require TOMS e oe a a ae AE a os Be A as em as ee 9 2 1 1 Minimum System Requirements 9 2 1 2 Recommended System Requirements 9 2 1 3 Important Information 10 2 2 Installing Trevance ooa aaa 10 2 2 1 Installation Options 22245 444 10 2 2 2 Installation Procedure 11 2 3 Starting Trevance the First Time 15 2 4 Creating a New Administrator and Web User 17 2 4 1 Creating a New Administrator 18 2 4 2 Deleting the Default ADMIN User 19 2 4 3 Creating a New Web User 20 2 4 4 Deleting the Default WEB User 22 3 Configuring Trevance 23 3 1 Preparing for Configuration 24 3 1 1 Using the Demonstration Version and Run ning Trevance As an Application 24 3 1 2 Running the Trevance Console and Server on the Same Machines 25 3 1 3 Pausing Trevance
126. UTID values to Payment Vault but encountered a problem Please restart the Trevance server Suggested Action Review PaymentVault Location Trevance Administrative Console gt Configure gt Options gt Payment Vault Review PaymentVault Server for Operational Status Review PaymentVault Logs for indication of problem Please shutdown the Trevance server and restart Message UTID PaymentVault Migration Error s Expanded Information Trevance attempted to migrate UTID values to Payment Vault but encountered a problem Suggested Action Review PaymentVault Location Trevance Administrative Console gt Configure gt Options gt PaymentVault Review PaymentVault Server for Operational Status Review PaymentVault Logs for indication of problem Suggested Trevance logs to provide to Auric Support for Payment Vault events are Trevance Log Exception Log Payment Vault Logs Found on the Payment Vault Server PV log Level III Transactions This chapter describes how Trevance handles Level III transac tions Level III is currently supported only by Chase Paymentech Solutions E 1 Purchase Card Line Items Trevance supports purchase card level III for MasterCard and Visa Level III is typically used in a business to business environ ment and provides for the inclusion of order and line item infor mation with purchase card settlement transactions Level III information is accepted only through theTrevance batch inter
127. Upload and Download directories need to be entered precisely as they are provided to you by First Data Note the path is case sensitive send to fdc is different from Send To FDC 18 1 2 Submitters Click on the SUBMITTERS tab to view a screen like the fol lowing E First Data Compass Basic Settings Submitters Divisions Server Info Submitter ID Passw Description E Cancel The SUBMITTER ID and PASSWORD identify the company whose transactions are being submitted Usually the presenter and submitter companies are the same however they may be different for third party submitters such as call centers At least one submitter is required Most installations now use a single submitter ID even if they are an in bound call center processing for dozens of clients Support for multiple submitters is mostly for historic purposes 284 10 11 12 13 14 15 16 CHAPTER 18 FIRST DATA COMPASS PLATFORM The submitters grid is sortable Click on a heading SUBMITTER ID PASSWORD DESCRIPTION to change the sort order To add a submitter click on m Type a number into the Submitter ID box This number is supplied by First Data and must be entered exactly as sup plied It identifies the company submitting the transactions Type a password into the PASSWORD box to view Confirm Entry Please confirm changes to the SID Password by re keying it below SID Password l Cance
128. When two Socket IP connections are defined Trevance uses one as the Primary and one as the Secondary e The Primary Connection is indicated by a checkmark in the Server Configuration screen see above e All real time transactions are sent to the Primary Connec tion e Ifthe Primary Connection is unavailable disconnected Trevance switches to sending transactions to the Secondary Connec tion e If a real time transaction is sent and never received because the socket disconnects Trevance eventually times out the transaction and returns with a timeout error Trevance does not automatically retransmit the transaction The de cision to retransmit a real time transaction is left as a busi ness decision on the merchant side Retransmitting some transactions such as debit card authorizations have mone tary consequences e Ifa transaction timeout is received Trevance switches con nections e Primary socket connection can also be set manually without pausing Trevance Select Server Primary Real Time Socket from the menu and select which socket you want to use as the Primary socket e A log entry appears whenever connections are switched 290 CHAPTER 18 FIRST DATA COMPASS PLATFORM 18 2 Configuring Transaction Defaults This section covers First Data specific details of batch file and realtime web configuration 18 2 1 Configure Import Defaults for Batch Files Refer to Configuring Imports for Batch File
129. a single authorization are not available The Trevance CN 4250 is capable of processing Sales Con ditional Deposit and Refund transactions through the real time web interface When a real time Sale S or C transaction is re ceived Trevance peforms a real time authorization which when successful is queued for batch deposit later in the day The AU THAMT is queued for capture since the merchant s Division may be configured for automatic Partial Authorization Since MoneyPak is an over the counter pre paid card there is no name or address associated with the card Thus no AVS Mon eyPak also does not have any card security code value associated with it In order to distinguish MoneyPak transactions from credit card transactions you must send a Tender Type TENDTYPE of M CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 236 DIRECT SALEM 16 0 17 Important Refund Note The Refund R transaction works slightly differently in the real time and batch interfaces When Trevance receives a Refund R transaction through the real time interface it first performs a real time Refund Au thorization RA transaction and on success queues a Refund R batch transaction for end of day settlement When Trevance receives a Refund R transaction through the batch interface it must contain the necessary MoneyPak Con firmation ID and Original Transaction ID fields from a prior Re fund Auth transaction 16 0 18 PayPal Trevance supp
130. ace Trevance refuses to run in test or production mode if an account exists with the user name WEB As a result you must create at least one new user with administrative privileges an administrator and then delete the default ADMIN user Now is a good time to do that You ll be all set for the switch from demo to test to production mode An administrator is able to make changes and take special ac tions that are barred to web and console users Only an adminis trator can delete the default ADMIN user That s why Trevance refuses to allow you to delete the default ADMIN user until you ve created a new administrator 18 CHAPTER 2 INSTALLING TREVANCE 2 4 1 Creating a New Administrator 1 Click on Configure 2 Click on Users to view Administer Users E User First Name Last Name a ADMIN Admmnistrative User WEB Web User xi t l OK Cancel 3 Click on au to view A New User Information y A unique name for the user account any combination of 4 to 20 characters This name automatically appears in full capital letters The user name is not case sensitive JOE and joe are User Information Privilege Settings identical User Type C Web Interface c The type of user In this case the type must be Administration Administrator First Name The first and last names of the user Last Name A unique password you ll see in the boxes The password must have at l
131. again when you con figure import files At that time the Merchant Number s and associated description s are automatically listed under the DEFAULT VALUES tab in the MERCHANT NUMBER box The Merchant Number grid is sortable Click on a head ing MERCHANT NUMBER ALIAS DEFAULT CURRENCY DESCRIP TION to change the sort order 20 1 CONFIGURING PROCESSOR SETTINGS 333 6 To add a Merchant Number click on pa to view New Merchant Information Enter the configuration information for this merchant below Merchant Number f Alias Default Currency Description Merchant Information Name DBA E MCC Oo Address o City TE State Prov PE Zip Postal Code DE Country Hi Contact Phone me e 7 In the MERCHANT NUMBER field type the value provided to you by FNMS 8 The ALIAS field is provided for future functionality Leave it blank for now 9 Under Default Currency click on to view a list of curren cies 10 Click on the currency you want Trevance automatically uses that currency for all transactions associated with that particular division ID If you leave the field blank U S dollars are used by default 11 Enter a DESCRIPTION This description is for your own use in identifying the submitter The description is never sent to FNMS 12 Enter the merchant information and location 334 CHAPTER 20 TSYS 13 Click on 20 1 0 3 Server Info 14 Click on t
132. ally installs in demo mode and as an appli cation it also installs as a Windows service but the service is not active After you complete the configuration you can test it without sending transactions to your processing service When you re sat isfied with the configuration you can switch from demo to test mode and then to production mode You can also switch to run ning Trevance as a service Trevance automatically remembers the configuration you set up when it was in demo mode and run ning as a application Trevance uses that same configuration when you switch modes and or run it as a service You may work in demo mode using the default ADMIN user and if you are using a WEB interface the default WEB user But Trevance won t let you test your configuration or really process 3 1 PREPARING FOR CONFIGURATION 25 transactions until you ve deleted the default ADMIN user and cre ated one or more new administrators You should have made this change already but if you haven t now is a good time 3 1 2 Running the Trevance Console and Server on the Same Machines For security Configuration must occur on the same machine that is running the Trevance payment application Note that the Trevance Console by default now writes all output data to the user s documentation directory under the Trevcon subdirectory For example if the user name under which you run Trevance is auricuser the Trevance Console writes logs
133. ance reads an encrypted but untagged data item the appropriate legacy key is used for decryption 2 3 CN Express e External Key Manager Tab e Select the Key Management software service to which you will connect e Enter the proper credentials e Encryption keys for all sensitive data are now managed ex ternally e CN Express Stores Encrypted Cardholder Information e In embedded Firebird database contained in the Data sub folder under the default installation directory e Or in the remotely installed Firebird database Data loca tions should be listed and noted e In backup gbk files Note the location as set in the Trevance Configuration utility Backup files are generated only for the embedded solution 2 3 CNIEXPRESS 399 e If using the local embedded Firebird database then securely delete the database file CNXAP FDB Also delete the backup files cnxap_ The Date GBK e If using the remote Firebird database you must delete the CN Express schema from the remote Firebird installation and remote files in a manner compliant with your PCI poli cies and procedures Such removal is absolutely necessary for PCI DSS compliance e After the update from CN Express 4 x to 5 0 CN Express will immediately start using the new Key Manager based keys for all existing sensitive cardholder data Transitory information such as transactions held for end of day settle ment and cached Payment Vault data
134. and exports into C Documents and Settings auricuser Trevcon This behavior has been changed in order to support Windows 7 and Server 2008 3 1 3 Pausing Trevance To configure imports and exports you must pause Trevance first If Trevance is running the choices on the Configure menu are disabled you can t select them Make sure Trevance is paused If necessary do one of the following e Click on Configure then click on Pause Server to Configure Items Below e Click on Server then click on Pause 3 1 4 Checking the File Extension Trevance requires every file to have a specific extension For import files the default extension is IMP you can change this Trevance will process any file as long as the file name ends with the correct file extension Suppose Trevance is set up to use the default file extension IMP for imports In that case e The following file names are all acceptable for import files ABC IMP or ABC FFF IMP or ABC_FFF IMP The file names are not case sensitive for example abc imp and abc_FFF imp are also acceptable 26 CHAPTER 3 CONFIGURING TREVANCE e The following file names are not acceptable ABC FFF or ABC IMP FFF or ABC_FFF Trevance ignores import files with an incorrect extension If your computer hides extensions you can t check the file names With hide extensions in effect a file that is named ABC IMP FFF is listed on screen as ABC IMP The file name looks
135. ansaction at this web site If the box is left blank the web site can transfer any amount The default is any amount Under Privilege Settings for a console user e Click on any or all of the boxes to add a check mark if you want the user to perform that task for example a check mark next to archive means that this particular user can archive The default is no check mark 8 Click on 9 Click on 3 2 ADDING DELETING AND ADMINISTERING USERS3 The first time a new user logs in the user must type his or her user name and password as they appear in the New User Information screen The name must be spelled correctly but Trevance is case insensitive Thereafter the user name appears automatically If the user forgets the password an administrator is the only person who can change it 3 2 2 Changing User Information 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Users to view Administer Users User Fret Name Last Name a ADMIN Administrative User is III NIETO E JONES John dones Le Edt Add Delete Cancel 4 Click on the user s name in this example JJONES 5 Click on _ to view 34 CHAPTER 3 CONFIGURING TREVANCE Edit User Settings y User JJONES User Information Prviegs Settings User Type C Web Irbelace Console C Administrator First Name JOHN Last Name
136. appears in the BATCH sub directory of the ARCHIVE directory e The file for batch summaries appears in the BATCHSUM MARY subdirectory of the ARCHIVE directory e The file for web interface transactions appears in the REAL TIME subdirectory of the ARCHIVE directory These files can be imported into a spreadsheet or database for reporting or analysis Under some circumstances you may also want to archive man ually 1 2 3 4 Click on Configure Click on Pause Server to Configure Items Below Click on File Click on Archive Database Logs to view Archive Activity Logs Archive Date 4 8 2004 The activity log and batch log entries made before or on this date will be removed from Trevance and written to external files This will reduce size requirements for the database but reports will no longer include these records These records will be archived to the following files on the Trevance server The first contains details of real time activity The second contains details of batch activity The third contains batch summaries C Program Files Trevance Archive Reall ime R_DEMO_ 20040408 TRA C Program Files Trevance Archive B atch B_DEMO_20040408 TRA C Program Files Trevance Archive B atchSummary S_DEMO_20040408 TRA Click OK when you are ready to continue or Cancel to cancel Cancel Trevance automatically creates a name for each archive file based on the Archive Date
137. at to expect from the web interface and what information to send back Turn web processing on or off e Configure imports for batch files Tell Trevance what type of information it should expect from your external application and in what format e Configure exports for batch files Tell Trevance what type of information it should send to the external application and in what format e Configure the AKMP key management proxy e Configure directories Change the default directories where files are stored e Configure options 23 24 CHAPTER 3 CONFIGURING TREVANCE e Decide whether to start in paused mode how long to track duplicate orders whether to change the default file exten sions and whether to use file polling among other options e Configure serial number and activation key and set the mode demo test or production e Produce a configuration report The configuration report shows exactly the configuration you ve set up and also lets you transport your configuration information except for passwords from one installation to another e Set run mode e Run demo as Switch between CN 3500 and CN 4200 for Chase Paymentech Solutions while in demo mode 3 1 Preparing for Configuration 3 1 1 Using the Demonstration Version and Running Trevance As an Application When you re configuring Trevance for the first time it is best to work in the demo mode and run Trevance as an application Trevance automatic
138. at was never deposited Visa now requires all such transactions to now be Account Checks MasterCard supports this only for Recurring Billing transactions When Trevance receives an Auth transaction with a zero dol lar amount and the method of payment is either MasterCard or Visa it converts that into an Account Check Y action Zero amounts for all other methods of payment are passed directly to First Data Table 18 4 First Data Compass Purchase Card Level 11 Authorization Auth Reversal Deposit Sale Exp Date Exp Date Expiration Date Expiration Date Continued on next page 302 CHAPTER 18 FIRST DATA COMPASS PLATFORM Table 18 4 Continued from previous page Authorization Auth Reversal Deposit Sale Refund Auth Purchase Order Purchase Order Date Number Number Ship To Address Ship To Address AM AM Tender Type Tender Type Authorization Code Authorization Date Purchase card level IT transactions require the same minimum information as a credit card transactions plus several additional fields American Express MasterCard and Visa accept level II trans actions Purchase Card account values can contain spaces or dashes 4 You must explicitly identify Purchase Card transactions by importing P in the TENDER TYPE field You must provide the amount of tax even if it is 0 00 You should provide the SHIP TO ADDRESS fields ADDRESS CITY STATE ZIP for America
139. ata Run Demo As choose for example CN 3500 or CN 4200 Reports Print This Page Select Report future Continued on next page 6 4 UNDERSTANDING THE TREVANCE SCREEN 117 Table 6 3 Continued from previous page Click on This Menu To Select from These Tasks Help User Manual view and print Field Reference view and print Get Acrobat Reader Configuration Report build a report Auric Systems International Home Page Maintenance Contract available in test or production mode only About Trevance Transaction Gateway find out about Trevance including the serial number and activation key 6 4 0 9 About Trevance Transaction Gateway find out about Trevance including the serial number and acti vation key There s one button on the main Trevance screen Table 6 4 Menus Click on To Trevance console the console no longer appears on the screen but Trevance continues working unless you also exit the server Operation You ve configured and tested Trevance and you ve arranged for an external application to send delimited text files to it Now you re ready for Trevance to automatically import submit and export files You must make sure that e Trevance is in production mode e Trevance is not paused Trevance starts working immediately and keeps on working You may never need to touch it again However
140. ata Compass Electronic Checks Authorization Deposit Sale Refund Routing Number Routing Number Routing Number Routing Number BillAddress BillAddress BillAddress BillAddress First Name First Name First Name First Name BillAddress BillAddress BillAddress BillAddress Last Name Last Name Last Name Last Name Transactions that contain the minimum information plus a ROUTING NUMBER also called a bank ID or bank routing num ber are automatically identified as electronic checks eChecks Trevance allows you to accept checks electronically that is over a secure web interface This type of transaction is not designed for handling accounts receivable conversion ARC or point of purchase POP check conversions Place the checking account number in the ACCOUNT field and the Routing Number Bank ID or Bank Routing Number in the ROUTING NUMBER field The ACCOUNT field can contain spaces It must not have dashes 66 Po Table 18 7 First Data Compass PIN less Debit Authorization Auth Reversal Deposit Expiration Date Expiration Date Expiration Date Continued on next page 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 305 Table 18 7 Continued from previous page Authorization Auth Reversal Deposit Sale Refund Biller Reference Biller Reference N A N A Tender Type Tender Type Tender Type Authorization Code Authorization Code PI
141. atform This chapter contains information on configuring processor set tings specifically for the First Data Compass platform First Data is making the Compass system available in several Releases Trevance is currently certified for Release 1 functionality Release 2 func tionality includes International Currencies PayPal BillMeLater and Retail Please contact your First Data representative with any questions regarding schedules for Release 2 This chapter docu ments the functionality currently available in Compass R1 as well as that scheduled for Compass R2 Trevance CN 3500 batch only communicates with First Data Compass via S FTP through the Internet or through a direct con nection VPN or Frame Relay Trevance CN 4200 and CN 4250 communicate with First Data Compass via a dedicated connection VPN or Frame Relay Dedi cated connections provide highly reliable communication and rapid transaction turn around times Trevance provides a built in failover functionality First Data can provide merchants with additional network level redundant failover configurations Please contact your First Data representa tive for details Trevance supports both the First Data On Line real time Authorization service and S F TP batch processing service Please refer to the Trevance README file to determine the latest First Data specification to which Trevance has been certified For additional documentation see the Auric Systems In
142. ation codes sometimes return as blank This is valid yes yes behavior You can check the LASTACTIONSUCCEEDED or RESPONSE yes no CODE field to determine if the authorization succeeded 16 0 14 Required Information Regardless of the method of payment Paymentech transactions require the following information e ACCOUNT Credit card debit card or bank account number e ACTION Authorization sale deposit refund Set to default or import with each transaction e AMOUNT e DIVISION ID Set to default or import with each transaction e MERCHANT ORDER NUMBER Every transaction requires a mer chant order number This value is used for tracking trans actions through Paymentech and the Card Associations Merchants should provide a MERCHANT ORDER NUMBER with each transaction Trevance generates an order number if one is not provided If you re performing two pass authoriza tion transactions that are followed by deposits you must use the same order number for the deposit and for the autho rization CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 214 DIRECT SALEM e PRESENTER ID and PASSWORD Batch only Configured in Trevance and never imported e SUBMITTER ID and PASSWORD Batch only Usually set to a default value in Trevance since it is rare to find some one using multiple submitter IDs If you do use multiple submitter IDs you must import the submitter ID with each batch transaction All batch transactions must
143. b Interface General Web Request Format Web Response Format Transactions are accepted by Trevance via HTTP POST in tagged format A short name for each field is given along with the field s value as shown in the preview Any held may be sent with any transaction and fields may be sent in any order Preview WEBUSER WEB amp WEBPASS WEBPW amp MRCHORDR 1 23456789048 CDEF amp ACCT 5465928239 Select Fields for Preview Delimiter z Options aicci g Y URLEncoded Value is Quoted Other Field Defaults Default Field Defaults A 4 Click on to view This screen lets you select default information for Trevance to use with the transaction if certain fields are missing e ACTION Select S Conditional Deposit Auric recom mends always sending a valid ACTION field in your trans actions DIVISION ID This is the Paymentech division ID that is assumed for all transactions submitted with a division If you are processing a single Division then it is suitable to use the Default If are using multiple or expect to be using multiple divisions in the future then leave this blank and always send a DIVISION ID with each transaction CLASS Many merchants have Paymentech assign a spe cific transaction class to each division Select MER CHANT DEFAULT to use the Paymentech configuration PRODUCT DELIVERY TYPE Select if you are sending Phys ical or Digital goods 276 CHAPTER 17 CHASE PAYMENTECH SOLUTIONS PNS TAMPA
144. can request an immediate check for any files waiting for retrieval To check response files Trevance must be working If it is paused this selection is not available e Click on Server e If Trevance is paused click on Resume e Click on Check Response Files Now If Trevance finds any file waiting for retrieval it retrieves the file A message appears at the bottom of your screen to let you know if any files were found 7 7 Using the Real Time Monitor and Chart The Real Time Monitor provides a summary of real time web in terface transactions processed since midnight It s reset at the end of the day that is at midnight It shows the total number and dollar value of each type of transaction It updates every ten 7 7 USING THE REAL TIME MONITOR AND CHART 133 seconds The Real Time Chart shows the same information in chart form Transactions that have been archived are not included in the Real Time Monitor and Real Time Chart 7 7 1 Viewing the Real Time Monitor The Real Time Monitor lists the processed authorization transac tions handled by Trevance in real time It calculates the total number and total value of each type of transaction that Trevance handled If you have multiple submitter and division IDs Trevance totals the transactions by submitter ID and division ID The value is given in the currency associated with the specific division ID The monitor may track transactions by several categorie
145. ccepted by Trevance via HTTP POST in tagged format A short name for each field is given along with the field s value as shown in the preview Any field may be sent with any transaction and fields may be sent in any order Preview WEBUSER WEB amp WEBPASS WwEBPW amp MRCHORDR 12345678304BCDEF amp ACCT 5465928239 m Select Fields for Preview Delimiter 77 C Tab Options fv URL Encoded Value is Quoted Field Value Separator Field Defaults Cancel 58 Click on CHAPTER 3 CONFIGURING TREVANCE The Preview box shows the effects of changes you make At any time you can return to the original defaults including those in the Preview box by clicking on the Default button to view Select Fields for Preview Available Fields ACTION Action A gt WEBUSER Web User A ALTTXAMT Altemate Tax Amount WEBPASS Web Password a ALTTXID Alternate Tax ID MACHORDA Merchant Order Number TAAT AMEX Trans Advice 1 ACCT Account A TAA2 AMEX Trans Advice 2 EXP Expiration Date TAA3 AMEX Trans Advice 3 AMT Amount TAA4 AMEX Trans Advice 4 BILLZCPC BillAddress ZIP Postal Code AUTHMOP Auth MOP v AUTHCODE Authorization Code AUTHSRC Authorization Source Co y Vv AUTHDATE Authorized Date ed eet ALITIITIMAO fA at Default There are two main boxes on the Select Fields for Preview screen Available Fields and Fields in Prev
146. ce for example you can t archive or configure imports until Trevance is paused The following table describes the menus Table 6 3 Menus Click on This Menu To Select from These Tasks Continued on next page 116 CHAPTER 6 UNDERSTANDING TREVANCE Table 6 3 Continued from previous page Click on This Menu To Select from These Tasks File Print page current screen Export Configuration File Import Configuration File Restore from Recovery Log Archive Database Logs archives activity log Sweep Database perform database maintenance tasks specific to embedded Firebird database Verify Repair Database for troubleshooting only Exit Trevance Server Pause Resume Resend Batch Remove Batch from the queue Check Response Files Now Configure Set Password Users add delete or change user information Reports change header E Mail Notification Scheduled Database Maintenance Pause Server to Configure Settings Below pauses server Resume Server when Configuration Complete resumes server Processor Settings Real Time Web Interface change settings Batch Files configure imports exports and batch file encryp tion Directories change where files are stored Options Serial Number and Activation Key enter or change Set Run Mode switches Trevance between demo test and production modes Set Server Passphrase an encryption key to protect your d
147. ce 2 x to 3 0 Trevance will immediately start using the new Key Manager based keys 2 2 TREVANCE 399 for all existing sensitive cardholder data Transitory infor mation such as transactions held for end of day settlement and cached PaymentVault data will continue to use the old key Such data is transitory and will be flushed from the system within a few hours transactions queued for end of day or days Payment Vault data is cached depending on the number of days you have configured to hold it in Trevance e If you are using PaymentVault Trevance will re encrypt the historic data as it is retrieved from Payment Vault dur ing normal UTID retrieval 2 2 1 Clearing Sensitive Data Trevance supports sending batch authorization transactions Au thorization transactions may include sensitive cardholder data CVV or CID Because these are batch transactions it is necessary for Trevance to temporarily store this information in its internal database as the batch is prepared for transmission to the payment processor To ensure that this data is not retained any longer than nec essary Trevance clears this information from its database when the batch export file is generated Trevance also never exports this information On ageneral level batch transmission through Trevance works like this 1 Merchant places a delimited text file with batch transactions in the Trevance import directory 2
148. ce console show the main screen 1 Double click on the icon that appears on the task bar of your desktop to view 7 2 SHUTTING DOWN AND RESTARTING THE SERVER21 hi I Trevance CN 4200 Transaction Gateway For Paymentech Server is Running Launch Trevance Console About Disconnect Console Users Shutdown Server 2 Click on l 3 Enter your user name and password to open the console view the main Trevance screen f to view the logon screen If Trevance was paused when you exited it opens paused If Trevance was running when you exited it opens running 7 2 Shutting Down and Restarting the Server The method for shutting down and restarting the server differs depending on whether Trevance is running as an application or a service You should wait until there isn t any import or export activity in progress before shutting down make sure the queue is empty or check for response files see page 149 After you check for response files you can shut down Trevance begins processing the response file s when you restart the server Trevance doesn t shut down immediately it waits to finish any transactions that are in the midst of processing Trevance stays paused as long as the server is shut down But when you start up again Trevance automatically begins process ing transactions even before you open the console This is the 122 CHAPTER 7 OPERATION default To configur
149. ce your selection over an existing column name for example replacing BillAddress with ShipAddress the old name automatically returns to the Fields list 7 Click on the Import File tab to view Import File Security Default Values After Import Delimiter Tab C Comma Comer Options First Row Contains Field Names IV Fields Include Quotes 8 Click on a radio button to identify the Delimiter used by the imported text file The default delimiter is a tab 9 If necessary click on one of the choices under Options to change the default Option Table 3 2 Change Default No Check Mark Check Mark First Row Contains Field Names Assumes that the first row of text is the record of a transaction not a list of field names default Assumes that the first row of text contains field names Fields Include Quotes Assumes that any quotes are part of the transaction record and includes them in the record sent to the pro cessing service default 10 Click on the Security tab to view Assumes that any quotes around a field aren t part of the transaction and deletes the quotes 42 11 12 13 14 15 CHAPTER 3 CONFIGURING TREVANCE Import Fle Security Default Values After Import r Select Encryption from the Batch Files menu to manage the keys used for import file encryption A key must be generated or imported before you can enable encrypt
150. cessing service and exports the processed transactions back to your external applica tion The transactions must be sent in a delimited text file with a IMP extension A batch file contains one or more authorization sale conditional deposit deposit or refund credit transactions Here s what hap pens 1 The external application creates a delimited text file IMP containing the records for any number of transactions from one transaction to several hundred thousand 2 The external application places that file in Trevance s BATCHIMPORT directory 3 Trevance receives imports the text file from the BATCHIM PORT directory and stores all the records in its own database If Trevance detects any problems with a record it still imports the record but a copy of the record and a warning message are placed in the WARNING directory Depending on how you configured Trevance to handle im ports it either deletes the original IMP file or changes its extension to DNE immediately after the file has been suc cessfully loaded into the Trevance database 4 Trevance sends all transactions to your processing service 5 The processing service processes the transactions autho rizes approves or declines each one and sends a response back to Trevance 6 Trevance updates its database with the information re ceived from your processing service It then formats the updated transaction records to match the requ
151. check transactions The encrypted checking account value is sent in the ACCOUNT field just as it is with unencrypted check transactions Authorization Deposit Sale 223 Table 16 9 Chase Paymentech Salem Switch Solo Refund Expiration Date Expiration Date Expiration Date Expiration Date Switch Solo Card Issue Number Switch Solo Card Issue Number Switch Solo Card Issue Number Switch Solo Card Issue Number Switch Solo Card Start Date Switch Solo Card Start Date Switch Solo Card Start Date Switch Solo Card Issue Number Authorization Code Authorization Date Switch and Solo are private label debit cards used in the United Kingdom Both cards are based in the UK and processed in British Pounds Sterling Even though Switch and Solo are debit cards they are pro cessed very like credit cards Switch Solo transactions are submitted to Paymentech as credit card transactions Trevance automatically recognizes Switch Solo transactions from the ACCOUNT value If a Switch Solo card has an issue number you must provide it If the card does not have an issue number you must provide the start date Table 16 10 Chase Paymentech Salem PIN less Debit Authorization Auth Reversal Deposit Expiration Date Exp Date Expiration Date Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 224 DIRECT SALEM Table 16 10 C
152. check tender type K transactions Table 16 15 Chase Paymentech Salem Bill Me Later Authorization Deposit Sale Refund BML Customer Type BML Customer Type BML Customer Type BML Customer Type BML Item Category BML Item Category BML Item Category BML Item Category Product Type Product Type Date of Birth Date of Birth T and C Version T and C Version T and C Version T and C Version Freight Freight Freight Freight Customer Registration Date Customer Registration Date Customer Registration Date Customer Registration Date Continued on next page Table 16 15 Continued from previous page 231 Authorization Deposit Sale Refund Customer Social Authorization Customer Social Security Number Code Security Number 9 Bill Address Authorization Bill Address First Name Date First Name Bill Address Last Name Bill Address Last Name Bill Address City Bill Address City Bill Address State Province Bill Address State Province Bill Address Zip Postal Code Bill Address Zip Postal Code Bill Address Country Ship Address Last Name Ship Address Last Name Ship Address City Ship Address City Ship Address State Province Ship Address State Province Ship Address Zip Postal Code Ship Address Zip Postal Code
153. configuration report that shows exactly the configuration you ve set up If you then copy this report to a word processing program for example you can save it for future reference If you change that configuration and decide later on to re create it the information you need is in the report To create the report 1 Click on Help 2 Click on Configuration Report 3 Click on The screen closes 4 Immediately open a new document in a text editor or word processing program 5 Paste 6 Save the pasted configuration report 30 CHAPTER 3 CONFIGURING TREVANCE More information about the configuration report appears later in this chapter 3 1 8 Configuring Currencies The examples in this manual use U S dollars Trevance currently supports over 150 world currencies Specific currency support is dependent on your processor Currencies are selected when configuring merchant ids divisions Some processing services do not allow multiple currencies 3 2 Adding Deleting and Administering Users You can add and delete users and change their user information The three types of users are administrator web and console Each type of user has different privileges the administrator has all privileges You may create more than one user of each type Multiple web and console users may log in at the same time but only one administrator may log in at a time You may work in demo mode using the default ADMIN user a
154. count Updater Action Codes 257 16 3 Fraud Scoring lt lt aoaaa oe c a a 257 16 3 1 Additional Fields 258 16 3 2 Fraud Responses 259 16 3 3 ValueLink aoaaa 263 16 4 Card Type Indicator e 28 a a 266 17 Chase Paymentech Solutions PNS Tampa 269 17 0 1 Server A 270 17 0 2 How Failover Works 21 17 0 3 Divisions ose ee sw secc no Rh ee 272 CONTENTS vii 17 1 Configuring Transaction Defaults 274 17 1 1 Configure Web Transaction Defaults 274 17 2 Methods of Payment Actions and Required Fields276 17 2 1 Required Information 276 172 2 Supported Disney Rewards Cards Actions 277 17 2 3 Generally Useful Fields 279 17 2 4 Required PNS Configuration Settings 279 17 2 5 Timeouts and Duplicate Detection 280 18 First Data Compass Platform 281 18 1 Configuring Processor Settings 282 18 1 1 Basic Settings eric ias 282 18 1 2 Su pm tt rs eose a e e a e o e w G 283 18 1 3 Divisions aoaaa ee 284 18 1 4 Server ooa a 287 18 1 5 How Failover Works 289 18 2 Configuring Transaction Defaults 290 18 2 1 Configure Import Defaults for Batch Files 290 18 2 2 Configure Web Transaction Defaults 292 18 3 Methods of Payment Actions and Required Fields294 18 3 1 Important Information about Debit Cards 295 18 3 2 Required Information 296 18 3 3 Generally Useful Fields 298 18 3 4 A
155. creen like the fol lowing Basic Settings Submitters Divisions Server Info Electronic Reports Submitter ID Password Description The SUBMITTER ID and PASSWORD are necessary for batch transactions only They identify the company whose trans actions are being submitted to Paymentech Frequently the presenter and submitter companies are the same however they may be different for third party submitters such as in bound call centers At least one submitter is required Most installations now use a single submitter ID even if they are an in bound call center processing for dozens of 194 10 EL 12 13 14 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM clients Support for multiple submitters is mostly for historic purposes The submitters grid is sortable Click on a heading SUBMIT TER ID PASSWORD DESCRIPTION to change the sort order To add a submitter click on a Type a number into the Submitter ID box This number is supplied by Paymentech and must be entered exactly as supplied It identifies the company submitting the transac tions Type a password into the PASSWORD box to view Confirm Entry Please confirm changes to the SID Password by re keying it below SID Password i Cancel This is the password associated with the submitter ID SID Re enter the password Click on Enter a DESCRIPTION This description
156. ction e On line only e Original Transaction ID GCORTXID 16 1 GIFT CARDS 255 16 1 2 15 Authorization A Verifies sufficient funds are available on the account and reserves the requested amount Amount is reserved on account until action code D Redemption Complete in real time and Deposit in batch or L Authorization Reversal e On line and Batch Note Authorizations work differently for one specific Mer chant Category Code MCC If an authorization is sent for mer chants with an MCC of 5542 and the authorization amount is 1 00 the entire balance of the card is locked Otherwise only the requested amount is locked For merchants with an MCC of 5542 authorization expires in three hours Otherwise authoriza tions are good for 7 days MCC is typically set per division at Chase Paymentech It can also be defaulted in the Trevance console or sent with each transaction 16 1 2 16 Authorization Reversal L Reverse a prior authorization and remove the amount lock from the account Authorization reversal is only valid if the authorization has not expired e On line and Batch e Requires original authorization code and authorization date 16 1 2 17 Redemption Completion D Redeem the amount locked in a prior authorization This is similar to a deposit transaction for a credit card Redemption amount must be the same as the amount previously authorized Trevance uses the same action code D for both real time and
157. d Step 10 describe the choices offered in each box 9 Click on a radio button to choose a Delimiter The default delimiter is a tab 10 Click on any of the choices under General Table 3 5 Choices Under General Option No Check Mark Check Mark Export Field Names in First Record Doesn t show the field names for the fields you se lected at Step 3 default Shows the field names for the fields you selected at Step 3 Include Quotes Around Each Field Omits quotes around field names default Places quotes around fields Split Approvals from Declines Places all transactions approved and declined in a single EXP file in the BATCHEXPORT directory default 11 Click on the Security tab to view General Security r Places approved transactions in a OK file in the BATCH EXPORT directory and de clined transactions in a BAD file in the DECLINES direc tory Select Encryption from the Batch Files menu to manage the keys used for export file encryption A key must be generated or imported before you can enable encrypted file handling here Mask Sensitive Data Leave this box checked to mask customer account information 12 The method for generating an encryption key is described in page 75 After you ve generated the encryption key you can return to this tab If you decide to encrypt export files place a check mark next to Encrypt Export Files For now go
158. d export formats to make sure they re using the information you just entered 16 0 5 Electronic Reports Click on the ELECTRONIC REPORTS tab to view 199 Basic Settings Submitters Divisions Server Info Check for Electronic Reports Hourly Cancel Paymentech provides the ability to pick up what they refer to as delimited file reports or DFR sometimes referred to as electronic reports This area in the configuration of Trevance enables Trevance to pick up those files on an hourly basis Iamm 16 0 6 How Failover Works The Trevance failover mechanism works as follows e When two Socket IP connections are defined Trevance uses one as the Primary and one as the Secondary e The Primary Connection is indicated by a checkmark in the Server Configuration screen see above e All real time transactions are sent to the Primary Connec tion e Ifthe Primary Connection is unavailable disconnected Trevance switches to sending transactions to the Secondary Connec tion e If a real time transaction is sent and never received because the socket disconnects Trevance eventually times out the CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 200 DIRECT SALEM transaction and returns with a timeout error Trevance does not automatically retransmit the transaction The de cision to retransmit a real time transaction is left as a busi ness decision on the merchant side Retransmit
159. d informa tion Trevance writes an entry to the log file and on the Log screen It saves the records in a warning file a basic ASCII text 114 CHAPTER 6 UNDERSTANDING TREVANCE file with the extension WRN and stores them in the WARNING directory The records also go to your processing service which ei ther accepts or declines them They re then treated like any other export 6 3 2 8 Web interface transactions A web interface transaction is one authorization transaction from an application that is capable of sending and receiving an HTTP POST Trevance processes this transaction as soon as it is re ceived that is in real time 6 4 Understanding the Trevance Screen The main Trevance screen contains four parts e Menu bar e Main window e Button bar e Message bar 6 4 UNDERSTANDING THE TREVANCE SCREEN 115 Menu bar 7 g Batch Real Time Monitor Real Time Chart PEE PM y Information Connection established to Authorization Hc 4 7 2004 4 33 58 PM Trevance v 1 1 1 1 Server Application Sta 4 7 2004 4 33 58 PM Q i Startup completed 4 7 2004 4 33 53PM U Creating file authorization request threads 4 7 2004 4 33 51 PM i i Creating Webinterface authorization reque Main window 4 7 2004 4 33 51 PM Initializing Paymentech communication laye Button bar Message bar B Connection established to Authorization Host DEMO Some of the menus may not be available until you pause Trevan
160. dvanced Configuration 299 18 3 5 PayPal 24 2 4 be eee REY Ome OS 309 19 Transfirst 319 19 1 Configuring Processor Settings 319 19 2 Methods of Payment Actions and Required Fields323 19 2 1 Required Information 324 19 2 2 TransFirst Specific Considerations 325 19 2 3 Generally Useful Fields 328 193 Advanced Transaction Configuration 329 20 Tsys 331 20 1 Configuring Processor Settings 331 20 2 Methods of Payment Actions and Required Fields334 20 2 1 Required Information 330 viii CONTENTS 20 2 2 Generally Useful Fields 340 20 3 Advanced Transaction Configuration 341 20 4 Generating an SSH Key 342 20 4 1 Generating 2048 bit RSA key with OpenSSH342 IV PA DSS Secure Implementation Guide 345 1 Magnetic Stripe and CVV2 Data 347 1 1 General aoaaa a 347 1 2 Trevance o oo aaa Ge werk HS 348 1 2 1 Securely Delete Files 348 1 2 2 Proper Log Handling isos es 349 1 2 3 Do Not Store CVV2 Field 349 1 3 CN Express oaa 350 1 3 1 Securely Delete Files 350 1 3 2 Proper Log Handling 350 1 3 3 Do Not Store CVV2 Field 351 1 4 Payment Vault Gye eG toe a ey ee 351 1 4 1 Securely Delete Files 351 1 4 2 Proper Log Handling 301 1 4 3 Do Not Store CVV2 Field 351 2 Protect Stored Cardholder Data 353 2 1 General sr oa ew Be ee
161. e Purchase card level IT transactions require the same minimum information as a credit card transactions plus several additional fields American Express MasterCard and Visa accept level II trans actions Purchase Card account values can contain spaces or dashes a You must explicitly identify Purchase Card transactions by importing P in the TENDER TYPE field You must provide the amount of tax even if it is 0 00 219 Paymentech recommends providing the SHIP TO ADDRESS fields ADDRESS CITY STATE ZIP for American Express AM purchase card transactions Table 16 5 Chase Paymentech Salem Purchase Card Level II Auth Auth Reversals Deposit Sale Refund Exp Exp Date Expiration Date Expiration Date Exp Date Date Auth Purchase Order Purchase Order Date Number Number Auth Tax Tax Code Alternate Tax Amount MC Alternate Tax Amount MC Alternate Tax ID MC Alternate Tax ID MC Discount Discount Tender Type Tender Type Authorization Code Authorization Date Purchase card level III transactions require the same mini mum information as level II transactions plus several additional fields Some fields are required only for a specific card type MC and are so marked in the chart CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 220 DIRECT SALEM Trevance supports supplemental records for purchase card level III line ite
162. e BS Bhs Bes 393 2 2 Trevance La AAA 304 2 2 1 Clearing Sensitive Data 355 2 2 2 Key Handling During Upgrade from Trevance 2 x to Trevance 3 x 306 28 CN Express 2 2 o aa 358 2 3 1 Clearing Sensitive Cardholder Data in Batch Transactions gt e borda eb oY 309 2 3 2 Key Handling During Upgrade from CN Express 4 x to CN Express 5 x 360 2 4 Payment Vault bo a he a eee E 362 2 4 1 Re Encrypting Historic Data 363 3 Secure Authentication Features 365 CONTENTS ix 3 1 General a eee ke Bs oe EO Se 365 3 2 Trevance oaoa de we we A HG a 366 3 2 1 Replace Default Users 366 3 3 CN Express o tes e e 367 3 3 1 Replace Default Users 367 3 4 Payment Vault AEREA 368 4 Log Payment Application Activity 369 4 1 General 236 ed yok 4 we a ee SA ee 369 4 2 Trevance ef ic2 di 208 b2e2d4 he rs 370 4 3 CN Express 2A Oe Bae Se ba kee es ote 4 4 PaymentVault oo 374 5 Develop Secure Payment Applications 375 5 1 General Zilina ee AG ee de Eo 375 6 Protect Wireless Transmissions 377 6 1 General ss 22 4e5 23 8 tai 685 Red mH ott 7 Test Payment Applications to Address Vulnera bilities 379 7 1 General y ck ey Gt HS eG A 379 8 Facilitate Secure Network Implementation 381 8 1 Sa a e gosi or te GS ee GSS BOK 381 9 Cardholder Data Must Never Be Stored on a Server Connected To the Internet 383 9 1 General 383 10 Facilitate Secure Remote Soft
163. e Trevance to restart in he paused mode see Changing General Options starting on page 95 7 2 1 When Trevance Is an Application 7 2 1 1 Shutdown To shut down the server 1 Click on File 2 Click on Exit to view r E 2 2 Trevance Console has closed Would you also like to shutdown the Trevance Server Yes No The message appears only if you haven t exited Trevance before and only if no other users are logged into the server 3 Click on 7 2 1 2 Restart To restart the server 1 Click on mastar 2 Click on Trevance to view the logon screen 3 Log on 7 2 2 When Trevance Is a Service Shut down the service through the Windows Control Panel After you shut down Trevance as a service you can either restart it as a service or open it as an application Restart the service through the Windows Control Panel 7 3 CHANGING THE LOG BATCH AND MONITOR SCREENS 123 7 3 Changing the Log Batch and Monitor Screens On the Log Batch and Monitor screens you can change the width of columns On the Batch and Monitor screens you can also change the order in which information appears This section describes how to perform those general changes 7 3 1 Changing the Width of Columns If the full column names aren t showing for example if you see St instead of Status click on the bar beside the column and drag it right Submittal Queue File Count a os As Uploaded 7 3 2 Sorting Informat
164. e course of normal operation Trevance finds a password error file it downloads the file displays the error message in the log and then undoes the internal password change Specif ically it swaps the current S FTP password and the last working S FTP password This means that the same two passwords are available to try although now the old working password is tried first If this occurs Trevance also immediately sets the last change date to a date 31 days in the past so that a new password change attempt is generated Chase Paymentech requires that passwords are never re used Rather than track all passwords ever used Trevance relies on the unlikeliness of a duplicate ever being generated there are around 64 8 possible generated passwords and its ability to han dle password change error files and re issue password change re quests should a duplicate occur For a manual reset the merchant must contact Chase Plum meted and enter the given password into Trevance console When this occurs Trevance sets the S FTP password and the Zip pass word to the new value deletes the previous S FTP password val ues and updates the last password change date 16 0 11 NetConnect Batch Password Summary In short once you ve entered the initial NetConnect password in formation Trevance handles all the automated 30 day password updates for you CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 206 DIRECT SALEM Configuring Transacti
165. e database either automatically or manually as described later in this chapter Auric Systems International recommends automatic maintenance To automatically maintain the database 1 Click on Configure 2 Click on Scheduled Database Maintenance to view Scheduled Database Maintenance x V Run Daily Database Maintenance Tasks Maintenance Time 24 HR 00 30 00 3 The Maintenance Time should be a time when the server will be least busy Maintenance T asks v Remove Processed Batches Y Archive Previous Day s Logs v Sweep Database v Back Up Database The default is a complete scheduled maintenance of the database beginning at half past midnight 00 30 00 daily If you click on Run Daily Database Maintenance Tasks to remove the check mark none of the daily maintenance tasks runs au tomatically Auric Systems International recommends that you do not remove the check mark 3 Change the time for performing maintenance tasks The default is half past midnight 00 30 00 Select a time so that maintenance occurs at these times 142 CHAPTER 8 MAINTENANCE e When the server is the least busy Trevance continues to process transactions while the maintenance tasks are being run e After all scheduled e mail notifications are sent out and you ve created all the reports you want Otherwise you won t be able to create reports because the daily main tenance tasks will have already removed and arc
166. e demo mode of Trevance you may switch versions again the versions available depend on your processing service After you enter the serial number and activation key you can continue to switch between versions as long as you are in demo mode Any time that you switch to test or production mode the system automatically locks into the version of Trevance that you purchased for example CN 4200 The following procedure assumes your processing service is Chase Paymentech Solutions and you want to switch from CN 3500 to CN 4200 To switch between versions 1 Click on Configure 2 If necessary click on Pause Server to Configure Items Below 3 Click on Run Demo As to view a screen like the following Run Demo As You can set the demo to run as these members of the Trevance family of products a pa Internet batch processing only no real time authorizations support for CN 3500 multiple divisions merchant numbers Batch processing and real time authorizations over frame relay plus c CN 4200 support for debit cards retail and other features 4 Select the version of Trevance you want to run In this example you would click on CN 4200 5 Click on to view 3 11 WORKING WITH AN IMPORT FILE THAT ISN T TYPICAL 81 a Trevance Console E i Demo product capabilities modified THESE CHANGES WILL NOT TAKE PLACE UNTIL TREVANCE IS RESTAR TED Please restart the Trevance Server a 6 Click on 7 Exit T
167. e the PY TOKEN value as the PayPal Token parameter e GO Get for Order Get customer information name ship ping address etc as well as PYPAYER e OO Create Order Get back a PYORDR value e A Authorise from Order Get back a PYTID e D Capture Capture the authorization using the PYTID returned by the Auth Get back a different PYTID which refers to the capture itself You can create contracts e SC Set for Contract Get back a PYTOKEN CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 242 DIRECT SALEM e Redirect to PayPal web site for authentication Use the PY TOKEN value as the PayPal Token parameter e GC Get for Contract Get customer information name shipping address etc as well as PYPAYER e OC Create Billing Agreement Get back a PYCID value e A Authorise from Contract Get back a PYTID e D Capture Capture the authorization using the PYTID returned by the Auth Get back a different PYTID which refers to the capture itself You could also create an order from contract and then auth capture against that In order to simplify recurring billing Chase Paymentech has a Recurring Sale transaction which is available only in Batch mode Trevance implements this Recurring Sale as an S transaction Note that the S transaction for the real time web works differ ently from the S transaction for batch When doing refunds the PYTID returned from the Capture must be used Note that this PYTID is only re
168. e the change in scale for the Transaction Count and Transaction Value columns 7 8 Disconnecting Console Users You may want to disconnect console users if you logged into a remote machine as an administrator for example and now want 7 8 DISCONNECTING CONSOLE USERS 137 to log into a local machine The administrator is allowed to log in only once 7 8 1 Disconnecting Users When Trevance Runs As an Application 1 Double click on the icon that appears on the task bar of your desktop to view a screen like the following 6 Trevance RUNNIN JE Trevance CN 4200 Transaction Gateway For Paymentech Server is Running pese Launch Trevance Console Disconnect Console Users Shutdown Server 2 Make sure the server is paused If necessary click on Pause 3 Click on Disconnect Console Users Trevance CN 40 Tr tion Gat 2 Are you sure you want to disconnect all console users es mw 4 Click on to view 138 CHAPTER 7 OPERATION Trevance Console Q Your session has been terminated from the Server aa 5 Click on You have now terminated all users from the server 7 8 2 Disconnecting Users When Trevance Runs As a Service You must shut down the server from the control panel to auto matically disconnect all users from the server Maintenance This chapter describes how to maintain and troubleshoot Trevance You ll also want to check out the information i
169. e transaction information is masked in these logs the log files may contain customer information Therefore they should be used only for short periods of time and only as diagnostic tools 3 8 4 1 Additional Logs 5 Click on the logs you want to create 6 Click on If you chose additional logs in Step 5 the following message appears 3 9 PRODUCING A CONFIGURATION REPORT 75 Trevance Console One or more additional logs are active Additional logs may contain confidential information e g credit card numbers Therefore they should be used only for short periods of time and only as diagnostic tools 7 Click on to save the selected logs to the LOG directory 3 9 Producing a Configuration Report The configuration report contains general information about your system and records every configuration decision you made for ex ample whether you selected file polling or asked Trevance to export a division ID with each transaction This report is avail able from the Help menu Auric Systems International recommends that you keep a copy of this report perhaps even under version control in case you ever want to duplicate a particular configura tion This configuration report is also used to troubleshoot your system The configuration report appears on screen and can be copied into any text or word processing program The content of the configuration file is created when you export the configuration report I
170. east seven characters at Password least one character must be a number at least one ip i m character must be a letter Trevance allows multiple administrators Each user must have a unique password and only one administrator can connect to Trevance at a time Cancel 4 Fill in the boxes under the USER INFORMATION tab You must choose Administrator 5 You don t have to click on the PRIVILEGE SETTINGS tab it simply confirms that administrators have no privilege re strictions 2 4 CREATING A NEW ADMINISTRATOR AND WEB USER 19 6 Click on 7 Exit Trevance The first time you log in as the new administrator you must type the user name and password exactly as they appear in the NEW USER INFORMATIONscreen Thereafter the user name appears automatically 2 4 2 Deleting the Default ADMIN User 1 Make sure you ve logged into Trevance using the new ad ministrator name and password you just created Do not log in as the default ADMIN user 2 Click on Configure 3 Click on Users to view Administer Users User Fret Name Last Name ADMIN Administrative User WEB We cer JONES n is i 4 br El Edt Add Delete 4 Click on the ADMIN user name 5 Click on _ Delete Trevance displays the following message Trevance Console LS 2 P 4re you sure you want to delete the selected user accounts Ce 20 6 CHAPTER 2 INSTALLING TREVA
171. ecessary for more complicated trans actions Table 20 1 Tsys Credit Card Authorization Deposit Sale Refund Expiration Date Expiration Date Expiration Date Expiration Date Authorization Date Authorization Code Transactions that contain the minimum information plus an expiration date are automatically identified as credit card transactions Sending a C in the TENDER TYPE field explicitly identifies credit card transactions Credit card account values can contain spaces or dashes Table 20 2 Tsys Purchase Card Level 11 Authorization Deposit Sale Refund Expiration Expiration Date Expiration Date Expiration Date Date Continued on next page 338 CHAPTER 20 TSYS Table 20 2 Continued from previous page Authorization Deposit Sale Refund Purchase Or Purchase Order der Number Tax Tax Ship To Address Ship To Address AM AM Tender Type Tender Type Authorization Code Purchase card level IT transactions require the same minimum information as a credit card transactions plus several additional fields American Express MasterCard and Visa accept level II trans actions Purchase Card account values can contain spaces or dashes gt You must explicitly identify Purchase Card transactions by importing P in the TENDER TYPE field You must provide the amount of tax even if it is 0 00
172. ects every import file to contain the information you ve specified in the order you speci fied Trevance automatically reformats the transactions in the file to meet the requirements of your processing service The following procedure makes two assumptions e The imported text file uses a tab for the delimiter and has quotation marks around fields e You re using a file supplied with Trevance to configure imports Trevance comes with sample processor specific files for use during formatting You could use any file of your own with the extension IMP TXT or CSV The sample file you use for configuration must reside on the same machine you re configuring from you can configure imports from a remote computer but the sample file must be located on the remote computer The sample file supplied in the BATCHIMPORT directory con tains a small number of credit card transactions To configure imports for batch files 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Batch Files 4 Click on Imports to view 38 CHAPTER 3 CONFIGURING TREVANCE Select Model Batch Import File Look in Bahmen e e Ae E E CreditCards txt My Recent Documents E Desktop My Documents My Computer My Network File name z Places Files of type Text files xt csv imp dne y Cancel 5 Double click on the text file containing the
173. ed file handling here JV Mask Sensitive Data on Import If import files are not encrypted and not to be deleted leave this option selected to mask customer account information and related fields in the renamed import file The method for generating an encryption key is described on page 75 After you ve generated the encryption key you can return to this tab If you decide to encrypt import files place a check mark next to Encrypt Import Files For now go on to Step 12 By default a check mark appears next to Mask Sensitive Data on Import Masking hides part of the customer account infor mation in renamed import files for example in DNE files It has no effect on the screen or on export files Masking ob scures all but the last four characters of a credit card number and entirely obscures the CVV so that number 1000 0001 0001 appears as _ _ 0001 If you remove the check mark sensitive data is not masked in the file Click on the Default Values tab to view Import Fle Security Default Values After Import Action D Depost y Submiterid y Division ID y ECommerce E Encipted HTTPS y Class D Merchant Defaut y Prod Deliv Type If your import file doesn t specify an Action field for each transaction you must set the default Action to one of the choices such as Authorize or Deposit For example if you select Authorize every transaction that Trevance receives with a blank Actio
174. ed in the database at the time of the upgrade or stored in a Payment Vault server To do so it removes the passphrase encryption from these keys and re encrypts them using a key delivered by the key manager This takes passphrase encryp tion out of the process but saves the keys that may be required to decrypt existing data At startup Trevance 3 0 1 Checks to see if a legacy key was set 2 If it has been set checks to see if it was in the old passphrase or new key manager format 3 If it is in old format Trevance requires that a key manager be configured or startup or it cannot continue a key man ager is not required for demo mode so it is possible that 358CHAPTER 2 PROTECT STORED CARDHOLDER DATA Trevance would be in this state if upgrading from demo mode 4 Attempts to decrypt the old format keys using the passphrase If the passphrase cannot be recovered because for exam ple Trevance had been moved to another machine then Trevance requires that the merchant enter the two segment passphrase at this point The passphrase is checked against a hash to make sure that the passphrase is correct 5 Requests a current key from the key manager 6 Uses the key manager key to encrypt the two legacy keys Data that has been encrypted by a key manager key is tagged with the key version so these are easily differentiated from data encrypted by legacy keys which are not tagged When Trev
175. elds to their default position with the default fields listed in their original order in the Fields in Preview box click on Default Click on to return to the Web Request Format screen Click on a radio button to identify the Delimiter for the items of information in each field in the Preview box The default delimiter is an ampersand 42 Type a character in the Field Value Separator to change the character that separates fields in the Preview box The default delimiter is an equal sign Field Defaults Click on to view fa Field Defaults Cuy These defaults will be used if a transaction is received without the following fields Action Authorize y ProdDeiwType y Division 1D E ECommerce Class D Merchant Defaut y Subm terlD o a a 3 6 CONFIGURING THE REAL TIME WEB INTERFACE 61 12 13 This screen lets you select default information for Trevance to use with the transaction if certain fields are missing Select the default action that you want Trevance to use The action must always be Authorize Every transaction that Trevance receives with a blank Action field is assumed to be an authorization You may need to change other defaults such as Division ID Class merchant default MOTO recurring E commerce or installment Tender credit card purchase card or check Submitter ID Prod Type for example gift certificate or share ware and
176. eque 4 7 2004 4 33 51 PM y Information Initializing Paymentech communication laye ra gt Ex Connection established to Authorization Host DEMO The columns on the Log screen give you the following informa tion Table 7 1 Log Screen Column Information Time The date mm dd yy and time hh mm ss when the event occurred Continued on next page 7 5 TRACKING RECENT BATCHES 125 Table 7 1 Continued from previous page Column Information such as error connecting to host Type The type of event Information such as submitting trans action Warning such as Rejected 20 Records or Error Event A detailed description of the event 7 4 2 The Log Files The entire log file not just the 200 most recent events is stored in the LOG directory and has a LOG extension Trevance creates a new file beginning at midnight on every day that it runs For example all the operating events that occur during August 4 2002 are logged to trevance_20020804 log and all the events that occur during August 9 2002 are logged to trevance_20020809 log You might want to remove the oldest log files periodically to conserve space on your hard drive 7 5 Tracking Recent Batches Trevance lists the batches that your processing service processed and then returned The Recent Batches list displays information about each batch for 30 days from the date the batch was re turned by the proc
177. er enter information here that is not provided by Chase Paymentech Complete the fields as follows User S FTP user login name provided by Chase Paymentech Set ZipFile Password ZipFile password provided by Chase Paymentech Generate Keys for Public Key Authentication This will generate new SSH key pair CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 202 DIRECT SALEM A new key SSH key pair will be generated when you click OK in the configuration dialog The public key is stored in a file you specify on the Trevance server This file must be forwarded to pour payment processor for registration The private key is stored in a file in the Trevance data directory Enter a password below to use to encrypt the private key file on the server Public Key File on Server C AuricSystems TrevanceD ata TrevanceS SHKey pub Private Key File Password Re enter to Confirm Cancel Enter a private key file password The public key will be stored in the TrevanceData folder The private key will be store in the TrevanceData data folder Forward the public key to your Paymentech representative Once the key is loaded up and you re given the ok by your Paymentech representative you re ready to proceed Servers Primary and secondary test servers Click the De fault Servers button to fill in the default values See the following section How NetConnect Passwords Work for details as to how Trevance automatically handles the S FTP
178. ers who connect This log should be regularly monitored for failed log in attempts e Use a Network Time Protocol service to ensure the time on the Trevance CN Express and Payment Vault servers is properly synchronized e Check the timezone and Daylight Savings Standard Time flag is set properly on the servers e Check all logs on a daily basis e Implement automated audit trails to reconstruct the follow ing events for all system components All individual user access to cardholder data All access to audit trails All actions taken by any individual with root or admin istrative privileges Access to all audit trails Invalid logical access attempts Use of identification and authentication mechanisms Initialization of the audit logs Creation and deletion of system level objects e Record at least the following audit trail entries for each event for all system components User identification Type of event Date and time 369 3NCHAPTER 4 LOG PAYMENT APPLICATION ACTIVITY Success or failure indication Origination of event Identity or name of affected data system component or resource e Trevance and CN Express have audit logs that are always active e You must capture and store these logs for at least one year to maintain PCI compliance Disabling logs will result in non compliance with PCI DSS e Any attempt to disable these logs will result in
179. es ine E ProgemFles Trevence Log CCS Backus C Progam Fies Trevance Backp Recovery Log C Program Files Trevance RecoveryLog Cancel Detar 4 Select the name of the directory you want to change for example RecoveryLog 5 Type in the new directory path 6 Click on Trevance automatically creates the new directory if neces sary 3 7 3 Returning to Defaults To return to the defaults the directories in place when you first installed Trevance click on 4 If you re running debit card transactions you must change the default location of RecoveryLog directory so that it s not on the same drive as Trevance 3 8 Configuring Options Trevance lets you decide whether to change the default file ex tensions 70 CHAPTER 3 CONFIGURING TREVANCE 3 8 1 Changing General Options Before you can exit Trevance you must pause it But by default when you restart Trevance it s already working not paused and immediately starts processing files Starting in paused mode is useful when you re working in a fully automated environment and need a chance to clear up data files when servers restart The general options screen allows you to set up Trevance to start in paused mode receive long log messages and change the current order number To change the general options 1 Click on Configure 2 If necessary click on Pause Server to Configure Items Below 3 Click on Options 4 Cl
180. essing service As batches leave the Submittal Queue they automatically show up on the Recent Batches list with two exceptions The Recent Batches list will not record batches that failed because of improper formatting or batches that you manu ally removed from the queue 1 Click on the Batch tab to view 126 CHAPTER 7 OPERATION Log Batch Res Time Monitor Real Time Chart Recent Batches Last 7 Deys E Transactions Saes _ Import File Date Time Submitter 10 Count Amt Count Amt Batch304 imp 5 24 2004 10 26 100 11583 1 Batch305 imp 5 24 2004 10 26 100 11701 1 80 9820 50 Totals 200 3284 20 160 336300 o 000 Submittal Queue Fie Count Status UploadedAs Uploaded Ext Exported declined item A1516000000000000000 to response file C Program Ale The Recent Batches window shows the following information Table 7 2 Recent Batches Window Column Information Import File The name of the batch file that Trevance imported Date Time The date and time when the submission was completed that is when the processing service returned the batch Submitter ID The submitter ID for the batch set up when you configured processor settings Transactions The total number Count and amount Amt of transactions in the batch Sales The total number Count and amount Amt of sales trans actions in the batch Continued on next page 7 6 USING
181. essor so that this key can be used for authentication Private Key File Browse Private Key File Password Cancel Trevance Console 1 Private key file successfully imported 9 Click OK You should see the following message 10 You ve now successfully created a key pair and imported the private key into Trevance Part IV PA DSS Secure Implementation Guide 345 1 Do Not Retain Full Magnetic Stripe or CV V2 Data 1 1 General e The Trevance and CN Express real time web interfaces accept transactions containing CVV2 CID magnetic stripe and debit card PIN block data This information is trans mitted directly to the processor and never stored e The Trevance and CN Express batch file interfaces accept transactions with CVV2 CID data This feature is provided for integration with legacy systems Auric recommends that CVV2 data not be transmitted in files e Import and export file encryption formats are discussed later in this document e If you do not encrypt the import file Auric strongly recom mends you multi pass delete the import file after it is read e If you do not delete the import file Auric strongly recom mends you mask sensitive data after import In this mode instead of just changing the imported file s extension from IMP to DNE CN Express copies the IMP file to a tempo rary file while masking sensitive data such as account num ber and CVV2 CID When the c
182. ethod ECP Authorization Method Checking Account Type Checking Account Type Checking Account Type Checking Account Type POP Terminal City POP Terminal City POP Terminal City POP Terminal City POP Terminal State 3 POP Terminal State POP Terminal State POP Terminal State Authorization Code Authorization Date NOTES 1 Although Paymentech allows merchants to set a default value for the ECP Authorization method Trevance requires a P to be imported as the ECP Authorization Field the A indicates that this is an point of purchase POP check transaction 21f the Checking Account Type field is not provided Trevance defaults to Consumer Checking CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM 230 3The POP Terminal City and POP Terminal State identify the physical location of the point of purchase activity Defaults may be set at Paymentech for each division If a default is set you do not need to present this field to Trevance Trevance supports point of purchase POP transactions The merchant is responsible for scanning the paper check and extract ing the necessary information to submit to Paymentech through Trevance POP is designed to improve check handling by turning paper checks into electronic transactions at the point of purchase Trevance automatically identifies ARC transactions as
183. evance README file to determine the latest Paymentech specification to which Trevance has been cer tified Configuring Processor Settings To configure the processor settings 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on Processor Settings to view a screen like the following 269 CHAPTER 17 CHASE PAYMENTECH SOLUTIONS 270 PNS TAMPA KE Chase Paymentech Tampa PNS Divisions Server Info Division ID The screen tabs and boxes that you see are set up specifically for Paymentech PNS Paymentech provides you with the settings required to complete this configuration 17 0 1 Server Info 1 Click on the SERVER INFO tab Fa Chase Paymentech Tampa PNS Divisions Server Info Real Time Socket Socket IP Port Socket 2 IP Port L 271 SERVER INFO allows you to configure up to two socket con nections to PNS The first connection is your primary con nection The second optional connection is your failover in case there should be communications problems with your primary connection Secondary or failover connections are not required 2 Fill in the SOCKET IP Paymentech will provide this in IP notation such as 10 20 33 129 Fill in the SOCKET PORT Paymentech provides this specific information in a settings document 3 If you are using secondary failover connection enter the SOCKET2 IP and SOCKET
184. exported 7 6 USING THE BATCH SUBMITTAL QUEUE 131 e Click on em and nothing happens Once you resume Trevance exports the file normally e Click on Server e Click on Resume 7 6 3 Resending a Batch Occasionally your processing service may ask you to resend a batch You should resend a batch only if your processing service or Auric Systems International asks you to You must contact your processing service before you resend a batch To resend a batch 1 Click on Server 2 If Trevance is not paused click on Pause 3 Click on the Batch tab to view the files in the Submittal Queue Submittal Queue Batch003 imp 5 Waiting Next Check at 1 26 59 t000000 006 4 3 2004 1 21 59 PM Batch004 imp 15 Waiting Next Check at 1 27 05 t000000 007 4 3 2004 1 22 05 PM 4 Click on the file you want to resend in this case Batch004 imp 5 Click on Server 6 Click on Resend Batch to view Trevance Console 2 Are you sure you want to resend the selected batch es to the processor No 132 CHAPTER 7 OPERATION 7 Click on to view a message like the following Trevance Console 1 Prepared batch from Batch004 imp for Resend Will be sent when Trevance is Resumed A 8 Click on Server 9 Click on Resume 10 The file is resent to the processing service 7 6 4 Checking Response Files Trevance automatically checks for response files at set intervals If you prefer you
185. face You don t need to provide level III specific infor mation authorization time only at settlement capture time Table E 1 Level III Specific Fields 433 Field Description MC Visa Refund FREIGHT Freight paid for order M V Expiration Date DUTY Duty paid for order M V SHIPCTRY Ship to country M V SHIPZCPC Ship to Zip Postal Code M V SFRMZCPC Ship from Zip Postal Code M V Continued on next page 434 APPENDIX E LEVEL II TRANSACTIONS Table E 1 Continued from previous page Field Description MC Visa Refund DISC Discount Amount on Entire V Order VATRATE VAT Tax Rate V VATAMT VAT Tax Paid on Order V ALTTXID Alternate Tax ID M ALTTXAMT Alternate Tax Amount M V None of these fields are required for level III but they can help improve your interchange rate processing fee Please contact your processing service s representative to determine which if any of these fields you should import E 2 Level III Line Item Records The level III specification allows merchants to provide specific line item information to MasterCard and Visa These line item entries appear on the customer s statement In the Trevance batch import file level III line items called L3 line items in the rest of this document are entered one per line immediately after the import line that contains the primary transaction information The characters L3 at the start of
186. from Batch002 imp at 4 4 2004 8 26 29 AM 4 Information File upload complete for transactions from Batch002 imp tran 4 4 2004 8 26 29 AM lt 9 Information 8296 Bytes Uploaded 4 4 2004 8 26 284M 4 Information Uploading transactions from Batch002 imp to Payrnentech DE 47472004 8 2b 20 AM E Tnformatior Batch conversi n complete Converted 15 records in 0 047 se 4 4 2004 8 26 28 AM 4 Information Total 1955 34 Sales 1955 34 Refunds 0 00 4 4 2004 8 26 28 AM y Information Queued t000000 009 Submitter HRecords 000034 H Orde 4 4 2004 8 26 28 4M J Information Converting imported batch to Paymentech format y O O Click on Server Click on Pause Click on the Batch tab Look at the Submittal Queue to see if the file is on the queue For example OND a Submittal Queue 5 Waiting Paused t000000 008 4 4 2004 8 26 23 AM Batch002 imp 15 Waiting Paused 1000000 009 4 4 2004 8 26 29 AM 9 Click on Server 5 1 TESTING YOUR CONFIGURATION IN DEMO MODP1 10 Click on Resume 11 When the file is processed and exported the file disappears from the queue and appears on the Recent Batches list Log Batch Real Time Monitor Real Time Chart Recent Batches bases Samoa ant fo Co c Program Files Trevance Batchlmport Batch0O5 4 3 2004 12 4 1706 82 C Program Files Trevance Batchimport Batch003 4 3 2004 1 26 5 776 94 C Program a e 4 3 2004 1 26 15 1955 34 Program Files Ba AA To O C
187. fund authorization on line by submitting an R or RA to CN 4200 or RA to CN 4250 as described above before you can successfully submit a batch refund request Card not present refunds do not require refund authorization Table 16 22 Chase Paymentech Salem Card Not Present Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 246 DIRECT SALEM Table 16 22 Continued from previous page Action Required Fields Online Batch A Authorization ACCT AMT XCLASS TENDTYPE TOKEN PA Partial Authorization ACCT AMT TENDTYPE XCLASS TOKEN FA Full Authorization ACCT AMT TENDTYPE XCLASS TOKEN S C Sale ACCT AMT TENDTYPE XCLASS TOKEN D Deposit ACCT AMT TENDTYPE AUTHCODE MRCHORDR CN 4250 Y L Auth Reversal ACCT AMT TENDTYPE AUTHCODE MRCHORDR Continued on next page 247 Table 16 22 Continued from previous page Action Required Fields Online Batch ACCT AMT TENDTYPE XCLASS SHIPZCPC Table 16 23 Chase Paymentech Salem Card Present Transactions Action Required Fields Online Batch A Authorization TENDTYPE TRACK2 PIN KSN CNACTION AMT XCLASS PA Partial Authorization TENDTYPE TRACK2 PIN KSN CNACTION AMT XCLASS Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 248 DIRECT SALEM Table 16 23 Continued from p
188. g Events 418 D 4 3 Real Time Events 419 D 4 4 Batch Events aaaea aa aaa 424 D 4 5 Method of Payment Events 428 D 4 6 Auric Cipher Engine ACE Events 429 D 4 7 Payment Vault Events aaa 430 E Level III Transactions 433 E 1 Purchase Card Line Items 433 E 2 Level III Line Item Records 434 ES porting e aes bk ee Se a a ee AY 437 E 4 Exporting o s c mor oe a eor e ee E es 439 F Contact Auric Systems International Technical Support 441 List of Tables 1 1 2 1 3 1 3 2 3 3 3 4 3 5 3 6 3 7 3 8 3 9 3 10 3 11 4 1 5 1 6 1 6 2 6 3 6 4 7 1 7 2 7 3 7 4 8 1 10 1 16 1 16 2 16 4 16 5 16 6 Trevance Versions and Abilities 2 Installing Trevance 24 242 e428 ee eee ame als 13 Configuring Imports e narrar dale y 38 Change Default eos eae a ea ee a ned 41 Arrow Keys 24 bbe ee eh Ow EK ES ee E OD 45 Changing Field Position lt 6 562 4h nee eee es 46 Choices Under General 0004 47 Mion Hells li osas BS ec ee a G 58 Changing Field s Position 59 Moving from Boxes 222 22 257 226 bebe ws 63 Changing Fields Position 5i 445 64 Preview ad Gok a RHE RA e RS 66 Importing Exporting Configuration Information 76 Trevance as a Service o 86 Demo Test Production Mode Differences 95 IS sh lt x A lt M we RO ke es SR aA R 108 Default File Extensions
189. g and fraud pur poses when processing e commerce transactions e LAST ACTION SUCCEEDED Returns Y whenever a requested transaction was successful Otherwise it returns N A useful first check to see if a transaction request was approved e RESPONSE CODE Paymentech s three digit response code e SOFT DESCRIPTOR 1 and 2 Provides information on the cardholder s monthly statement This must be set up at Paymentech before you can use it In addition to the fields described above you should also send the account holder s full name FIRST NAME and LAST NAME fields as well as the address city state and ZIP or postal code whenever available This helps reduce your interchange rate processing fee If you do not have a full address at least obtain and send a ZIP code U S or postal code Canada and United Kingdom Additionally obtain and transmit the card security code CVV2 CID information with authorization transactions 16 0 16 Advanced Configuration The following tables show the basic transaction information for each type of transaction Once you get beyond the basics you must consult with your Paymentech representative to determine what data you should be sending for maximum efficiency and low est processing fees also called interchange Paymentech s On Line Processing Technical Specification and Batch Technical Specification describe over 160 possible fields that can be transmitted The specific fie
190. g service declined at least one transaction e Check that improperly formatted batch transactions appear in two directories They always appear in the WARNING directory in this example the file is named Batch002 WRN They should also appear in the BATCH EXPORT directory If Trevance9 is configured to split approved transactions from declined then declined trans actions should appear in the DECLINE directory Did you configure Trevance to create a done file rather than deleting the IMP file If so the BATCHIMPORT directory should contain a file with a DNE extension for example Batch002 DNE View any of the files with your text editor or word processor to check the content If Trevance doesn t act as expected or if it rejects your file Check the extensions on your files Make sure your import file doesn t have a double extension If you changed the default extension for any file make sure you didn t duplicate an existing extension Also make sure that your application recognizes the new names Check your import configuration Make sure you configured imports to match the test file Check your export configuration Check your directory configuration If you changed the de faults make sure your application and Trevance know where to send and find files Make sure you re looking in the correct directories for batches and for real time web transactions 5 1 TESTING YOUR CONFIGURATION IN DEMO MODB 3 5
191. g the ACCOUNT ACTION AMOUNT and MERCHANT NUMBER Trevance supports hundreds of different import export fields in order to support a wide variety of payment types for a num ber of different payment processors As most merchants start out processing just credit cards there s a fairly small number of fields that must be used If you find yourself importing over a dozen fields please call your Auric representative to ensure you re not doing more work than you need to Performing basic credit card processing with Trevance for TransFirst is simple and can be set up quickly Ask your Trevance representative what is necessary for more complicated transactions 19 2 2 TransFirst Specific Considerations The following are a few things to consider when connecting with TransFirst e Only Sales S and Refund R transactions are supported for Electronic Checks e For batch files either the Tax Amount must be sent or the Tax Exempt Flag sent and set to Y for authorizations e TransFirst defines ECommerceType differently than other processors For TransFirst ECommerce Type is not sent ex cept for 3DS transactions for 3DS transactions it must be set to the numeric value obtained at authorization time This is passed through directly Table 19 1 Trans First Credit Card Authorization Deposit Sale Refund Expiration Date Expiration Date Expiration Date Expiration Date Continued on next page 326 CHAPTER 19 TRANSFIRS
192. gs specifically for TransFirst Please refer to Part I Trevance Installation Configuration and Operation in this manual for generic Trevance information Trevance supports secure HTTPS real time and SFTP batch connections to the TransFirst CNP platform For additional documentation see the Auric Systems Interna tional web site specifically e General Trevance Support http www AuricSystems com support center trevance Additional technical HTML reference documents are available in your local Trevance Doc directory You may also find TransFirst s Managed eLink and Batch Tech nical specifications to be useful Please contact your TransFirst representative for copies 19 1 Configuring Processor Settings To configure the processor settings 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on PROCESSOR SETTINGS to view a screen like the fol lowing 319 320 CHAPTER 19 TRANSFIRST Sa Transfirst Basic Settings Merchant IDs Server Info Sender ID Sender Name i Cancel 19 1 0 2 Basic Settings Click on the BASIC SETTINGS tab BASIC SETTINGS information identifies the company present ing information to TransFirst In other words it identifies the company that s running Trevance This is required information which comes from TransFirst 19 1 0 3 Merchant Numbers Click on the MERCHANT NUMBERS tab to
193. gure gt Options gt Security gt ACE 430 APPENDIX D ERROR AND EVENT MESSAGES and review Merchants Internal Encryption Decryption service for proper operation Suggested Trevance logs to provide to Auric Support ACE events are Trevance Log Exception Log Configuration Report D 4 7 Payment Vault Events Message Duplicate UTID Generated s Expanded Information Trevance has generated a duplicate UTID this is extremely unlikely to occur Suggested Action Review the transaction and resubmit it for a unique UTID Message Payment Vault Lookup Error s Expanded Information Trevance attempted to lookup a UTID value but encountered a problem Suggested Action Review PaymentVault Location Trevance Administrative Console gt Configure gt Options gt Payment Vault Review PaymentVault Server for Operational Status Review PaymentVault Logs for indication of problem Message PaymentVault Migration s Expanded Information Trevance attempted to migrate UTID values to Payment Vault but encountered a problem Suggested Action Review PaymentVault Location Trevance Administrative Console gt Configure gt Options gt Payment Vault Review PaymentVault Server for Operational Status Review Payment Vault Logs for indication of problem D 4 EVENTS 431 Message PaymentVault migration had errors Please shut down the Trevance server and restart Expanded Information Trevance attempted to migrate
194. he SERVER INFO tab to view kl First National Merchant Solutions Basic Settings Merchant Numbers Server Info FTP Batch FTP Server IP FTP User FTP Password Passive Mode FTP The server information helps set up communications with FNMS 15 Fill in the boxes based on information you receive from FNMS 16 Click on 20 2 Methods of Payment Actions and Required Fields Trevance for FNMS supports the following methods of payment MOPs e Credit card American Express Carte Blanche Diners Club Discover JCB MasterCard Visa 20 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 335 e Purchase card level II American Express MasterCard Visa e Accounts Receivable check Conversion ARC written telephone web Trevance automatically recognizes some of these methods of payment For others specific fields must be set Refer to the Method of Payment documentation in the Trevance Field Ref erence for FNMS http auricsystems com tr_fnms_150 20 2 1 Required Information Regardless of the method of payment FNMS transactions require the following information e ACCOUNT Credit card debit card or bank account number ACTION Authorization sale deposit refund Set to default or import with each transaction AMOUNT e MERCHANT NUMBER Set to default or import with each trans action e MERCHANT ORDER NUMBER Every transaction requires a mer chant order number
195. he encryption key 19 Click en 20 Click on 21 When you ve finished managing the encryption key click on Done 3 6 Configuring the Real Time Web Interface Trevance accepts authorization transactions or authorization re funds for debit cards from any application capable of sending and receiving an HTTP POST for example an interactive voice re sponse IVR system a relational database or a program written in any of the dozens of computer languages that can communi cate using web standards Each web request POST contains one transaction Trevance handles up to 15 POSTs per second Use the Web Interface Settings screen to see the fields your appli cation should be sending to the web the Web Request Format and 3 6 CONFIGURING THE REAL TIME WEB INTERFACE 55 to configure the response Trevance receives the Web Response For mat Using the Web Request Format screen you indicate the delimiter any URL encoding and other characteristics of the POST that Trevance will receive Then Trevance automatically arranges the transaction from your application to meet the requirements of your processing service The Web Request Format screen is a guide Using the Web Response Format screen you tell Trevance what to send back to the web application after your processing service has accepted or declined the transaction You select the fields and the order in which you want them to appear among other options Wi
196. hived the data For information on scheduling e mail notifi cations see Configuring and Sending E Mail Notifica tions Messages on page 180 e Before 1 a m or after 3 a m If you schedule database maintenance tasks between 1 00 a m and 3 00 a m you ll run into problems when the time changes between standard and daylight savings time In spring clocks jump from 1 59 a m to 3 00 a m in fall clocks jump from 1 59 a m to 1 00 a m 4 Make sure there s a check mark next to any maintenance tasks you want to run at the time you selected Table 8 1 Scheduling Database Maintenance Task Definition Remove Processed Batches Deletes batches that have been processed and exported To reduce the processing load dur ing high traffic times Trevance waits to delete batches Make sure you run this maintenance task nightly to keep the database from growing too large Continued on next page 8 4 BACKING UP AND RESTORING THE DATABASE MANUALLY 143 Table 8 1 Continued from previous page Task Definition Archive Previous Day s Logs Archives the previous day s transaction activity logs the batch and real time files are archived sep arately Make sure you run this maintenance task nightly to keep the database from growing too large If for some reason the activity log archive hasn t run for a few days the automated process also archives transaction activity older than the previous day Sweep
197. ho rized There is a new ASIRESP code of 105 indicating a Partial Au thorization occurred When performing a deposit refund or auth reversal you need to use the value returned in AUTHAMT 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 301 Note that if you have a division configured to default to Partial Authorization the Sales transactions sent through the real time interface will default to Partial Auth but sales transactions sent through the batch interface will default to Full Auth The reason is that First Data does not support Partial Auth for Sales Conditional Deposit transactions And First Data only supports Auths through the real time interface However when using the Trevance CN 4250 Trevance first Authorizes the transaction through the realtime interface which supports Par tial Auth and if successful batches a Deposit transaction for end of day settlement Trevance also supports the Full Authorization FA action which forces a transaction to fail if the amount requested for au thorization is not available FA must only be used where a division is set up to support Partial Authorizations otherwise use the stan dard Authorized A action code The new June 2009 Account Check Y action code is sup ported for MasterCard and Visa transactions Sending an Account Check Y with a zero 0 dollar amount verifies the existence of the card Previously merchants would typically send a dollar auth th
198. ication and in what format If you don t select a field the in formation isn t saved in the export file even if your processing service included it For an explanation of all the fields available for export see the Field Reference under the main Help menu Purchase Card Level III has a hard coded format to which im port fields need to conform So there are no export or import 44 CHAPTER 3 CONFIGURING TREVANCE configuration options for Purchase Card Level Level III see Ap pendix B Level III Transactions on page 353 The sample file you use for configuration must reside on the some machine you re configuring from you can configure exports from a remote computer but the sample file must be located on the remote computer To configure exports for batch files 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Batch Files 4 Click on Exports to view a screen like the following Configure Export BATCH FILES ix Available Fields Field Reference Fields to Export Activity Date A gt Action A Alternate Tax Amount Account m A Alternate Tax ID Expiration Date l AMEX Trans dvice 1 Amount 3 P AMEX Trans dvice 2 gt BilAddress First Name LY AMEX Trans Advice 3 Bil ddress Last Name AMEX Trans Advice 4 BilAddress Address 1 Auth MOP lt BitAddress City v Authorization Source Code BilAddress State Province Authorized Time BilAdd
199. ick on m 286 18 19 20 21 22 CHAPTER 18 FIRST DATA COMPASS PLATFORM New Merchant Information Enter the configuration information for this merchant below Division ID C M Alias EE Default Currency Description cw Merchant Information Name DBA Mii E AN MCC AMEX Merchant 1D Address Bt City i _ i it a State Prov Zip PostalCode Country E Contact Info co _ me ce Type the division number under DIVISION ID This 10 digit number is supplied by First Data The number must have 10 digits if you have a 6 digit number add four zeroes to the left hand side for example change 123456 to 0000123456 The ALIAS field is provided for future functionality Leave it blank for now Under Default Currency click on to view a list of curren cies Click on the currency you want Trevance automatically uses that currency for all transactions associated with that particular division ID If you leave the field blank U S dollars are used by default Enter a DESCRIPTION This description is for your own use in identifying the submitter The description is never sent to First Data 18 1 CONFIGURING PROCESSOR SETTINGS 287 23 The Merchant Information section contains your basic mer chant info 18 1 4 Server 24 Click on the SERVER INFO tab to view E First Data Compass Basic Settings Submitters Divisions Server Info Real Time Socket IV Enable
200. ick on the General tab to view General Security Real Time File Extensions Payment autt Troubleshooting General Options JV Start in Paused Mode JV Verbose Log Messages IV Generate Batch Report Files MID Generation This should be used when installing Trevance on a new server to avoid conflicts with automatically generated IDs from previous installations Order ID Not actual order number 493 Set Installation ID fat E Cancel 5 If you want Trevance to always start paused not running click on the box next to Start in Paused Mode to show a check mark 6 If you want long verbose log messages click on the box next to Verbose Log Messages to show a check mark 3 8 CONFIGURING OPTIONS T1 7 If you want to change the current order number click on to view Set Next Generated ID X Enter the new value for the Next Generated ID below The new value must be higher than the old value to avoid conflicts with any existing orders The highest value you can set is 49 999 999 New Value fi 8 In the New Value box type the number at which automatic number generation should start Click on to return to the General options screen 9 Click on 3 8 2 Selecting a Secure File Deletion Method For security you need to delete the imported files and temporary files that Trevance uses 1 Click on Configure 2 If necessary click on Pau
201. ider 1 2 Passwords Trevance uses passwords at several different levels 4 CHAPTER 1 WELCOME e Access to the underlying operating system e Encrypting sensitive data e Submitting transactions through the Web e Monitoring Trevance Your in house PCI policy in regards to password and key man agement must be applied to these passwords 1 3 Access to the Underlying Operating System All Trevance configuration is performed locally There is no re mote access for configuration and control 1 4 Encrypting Sensitive Data Trevance supports an external key management server accessible via the Auric Key Management Proxy AKMP Please refer to Chapter 15 for security specific information 1 5 Submitting Transactions through the Web Trevance requires all web based transactions to include a user ID and password These accounts cannot retrieve any information from Trevance beyond the information returned for the current transaction Trevance limits the IP addresses from which web transactions are accepted 1 6 Contacting Auric Systems International To contact Auric Systems International 1 6 CONTACTING AURIC SYSTEMS INTERNATIONAL 5 Phone 603 924 6079 E mail support support AuricSystems com E mail sales sales AuricSystems com Web Site http www AuricSystems com You can also reach the Auric Systems International home page directly from the Trevance Help menu e Click on Help e Click on Auric
202. ies the customer s bank Each country has its own bank sort code format The EDD RIB Code EDRIB is the bank account checksum This is optional and used only in France Green Dot MoneyPak Trevance supports Green Dot MoneyPak through both real time and batch interfaces Trevance supports the following actions Chase Paymentech Salem Green Dot MoneyPak Authorization A Partial Authorization PA Force Full Auth FA Deposit D Real Time Batch Real Time Batch Real Time Batch Real Time Batch Account Account Account Account Amount Amount Amount Amount Tender Type M Tender Type M Tender Type M Tender Type M MoneyPak Confirmation ID Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM 234 Table 16 17 Continued from previous page Authorization A Partial Authorization PA Force Full Auth FA Deposit D Balance Inquiry Q Sale S Table 16 18 Refund Auth RA MoneyPak Transaction ID Refund R Real Time Batch Real Time Batch Real Time Batch Real Time Batch Account Account Account Account Amount Amount Amount Amount Tender Type M Tender Type M Tender Type M Tender Type M MoneyPak Confirmation ID MoneyPak Confirmation ID MoneyPak Transaction ID MoneyPak Transaction ID Account and Amount i
203. iew Some of the default fields are shown in the screen above You may want to change or add to these fields To move a field from one box to the other select the field by clicking on the field name Then Table 3 6 Moving Fields Click on To Move the selected field into the Fields in Preview box Move all the available fields into the Fields in Preview box Continued on next page 3 6 CONFIGURING THE REAL TIME WEB INTERFACE 59 Table 3 6 Continued from previous page Click on To Move the selected field into the Available Fields box lt that field isn t exported Move all the fields into the Available Fields box no fields are exported 6 The first field shown in the Fields in Preview box is the first field to appear in the Preview To change a field s position select the field by clicking on the field name Then Table 3 7 Changing Field s Position Click on To Move a Field To the top spot in the box the beginning of the record gt Up one spot Down one spot Continued on next page 60 CHAPTER 3 CONFIGURING TREVANCE Table 3 7 Continued from previous page Click on To Move a Field 10 11 To the bottom spot in the box the end of the record Trevance arranges each transaction record to show the fields you chose at Step 3 in the order you chose at Step 4 To return all fi
204. il Notification s Expanded Information Trevance could not successfully send an E mail notification Suggested Action Review Email Settings Trevance Menu Con figure gt Email Notification or Review Email provider status Message Error connecting to Trevance database Expanded Information Trevance is experiencing an issue while connecting to the Trevance database Suggested Action Review if a process Example anti virus application scans may be preventing Trevance from connecting to the database Message Error saving log information for transaction s Error was s Please contact Auric Systems technical support Expanded Information Trevance encountered a problem when saving the log information Suggested Action Review disk space permission or previously open log for log directory Message Fatal Error s Shutting Down Expanded Information Trevance has encountered a significant problem and is shutting down Suggested Action Review for Hardware Disk space or Op erating System issues Contact Auric Technical support Sup port AuricSystems com Or Call 603 924 6079 Provide Auric support the suggested Trevance Logs below Message Trevance is already running Please pause and exit Trevance and try starting the service again Expanded Information Trevance has encountered another in stance of Trevance previously running on the current server Suggested Action Review for another instance running as an application or
205. in identifying the submitter The description is never sent to TransFirst Enter the merchant information and MCC value provided by TransFirst Enter the Customer Service Phone number This value is sent to TransFirst Click on 19 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 323 19 1 0 4 Server Info 14 Click on the SERVER INFO tab to view a Transfirst Basic Settings Merchant IDs Server Info Real Time HTTPS IV Enable Real Time Processing URL SFTP M Enable SFTP Server SFTP User SFTP Password The server information helps set up communications with TransFirst 15 Fill in the boxes based on information you receive from TransFirst 16 Click on 19 2 Methods of Payment Actions and Required Fields Trevance for TransFirst supports the following methods of pay ment MOPs e Credit card American Express Carte Blanche Diners Club Discover JCB MasterCard Visa e Purchase card level II American Express MasterCard Visa 324 CHAPTER 19 TRANSFIRST e Electronic Checks Trevance automatically recognizes some of these methods of payment For others specific fields must be set Refer to the Method of Payment documentation in the Trevance Field Ref erence for TransFirst http www AuricSystems com tr_transfirst 19 2 1 Required Information Regardless of the method of payment TransFirst transactions re quire the following information e ACCOUNT Credit ca
206. in house merchant applications via a web service interface The current ACE implementation communicates with custom in house encryption decryption services ACE eventually will sup port a basic set of internal encryption decryption and key manage ment services as well as be integrated with off the shelf third party tools Please contact Auric Systems International for additional in formation and availability of ACE technologies 11 1 Configuring Trevance for ACE The ACE settings allow you to set up ACE encryption decryption support and connect to an optional external ACE server To configure ACE settings 1 Click on Configure 2 Click on Security 3 Enter the full ACE url could be http or https 4 Click OK 169 170 CHAPTER 11 ACE AURIC CIPHER ENGINE Options General Security Real Time File Extensions PaymentVautt Troubleshooting File Deletion Method Select a deletion method for imported files and temporary files used by Trevance Multi Pass Overwrite and Delete is the most secure and the recommended setting Multi Pass Overwrite and Delete C One Pass Overwrite and Delete C Quick Delete External Encryption ACE ACE URL hitp 127 0 0 1 8766 11 2 Using Encrypted Account Values Trevance with ACE provides a new Encrypted Account EACCT field This EACCT field is used much the way the existing Account ACCT field is used To use ACE a merchant typically configures Treva
207. intain PCI DSS compliant access and logins to the servers on which Trevance CN Express and Payment Vault are installed e Trevance and CN Express provide default accounts that must be replaced before running either program in Test or Production modes e Trevance and CN Express passwords may be as long as 40 characters This encourages the use of long easily remem bered passwords sentences poems etc vs short cryptic passwords Spaces and punctuation are acceptable password characters e Trevance and CN Express maintain a history of the last four passwords used and do not allow them to be reused e Passwords must be maintained according to company poli cies and procedures Specifically PCI recommends that pass words be changed every 90 days e You must not use administrative accounts for payment ap plication logins e g don t use the sa account for payment application access to the database 365 366 CHAPTER 3 SECURE AUTHENTICATION FEATURES e You must assign secure authentication default accounts even if they won t be used and then disable or do not use the accounts e You must assign secure authentication for payment applica tions and systems whenever possible e You must create PCI DSS compliant secure authentication to access the payment application per PCI DSS Requirements 8 5 8 through 8 5 15 e Changing out of the box installation settings for unique usernames and sec
208. ion You can sort information on the Batch or Monitor screens based on any one column For example you can sort the Recent Batches screen by Date Time 1 Click on the column header An arrow appears in the header to indicate whether you are sorting in ascending or descending order 2 Click until the batches are sorted in the order you want For example if you sort by Date Time in descending order you ll see the oldest batches first 7 4 Understanding the Events Log Trevance logs operating events such as pause and resume file import and export and submission of transactions in two ways on the Log screen and in a log file 124 CHAPTER 7 OPERATION 7 4 1 The Log Screen On the Log screen Trevance lists the events that occur from the moment when Trevance starts up to a maximum of 200 events After 200 the oldest events disappear from the screen although they re still available in the log file The Log screen is reset at midnight each night or any time that you exit Trevance Click on the Log tab to view Tr Ince IN on Trevance f yy ch Local us UES Log Batch Real Time Monitor Real Time Chart 4 7 2004 4 33 58 PM q Information Trevance v 1 1 1 1 Server Application Sta 4 7 2004 4 33 58 PM gt Information Startup completed DEMO 4 7 2004 4 33 53 PM 4 Information Creating file authorization request threads 4 7 2004 4 33 51 PM Y Information Creating Webinterface authorization r
209. ion ARC transactions The merchant is responsible for scanning the pa per check and extracting the necessary information to submit to FNMS through Trevance ARC is designed to improve check handling by turning paper checks into electronic transactions Trevance automatically identifies ARC transactions as check tender type K transactions 20 2 2 Generally Useful Fields The following fields are generally useful for most types of transac tions Refer to the on line field reference list for additional infor mation e COMMENT 1 through 4 Four 128 character general purpose fields Not sent to FNMS Use these for your own tracking purposes e CURRENCY Usually set as a default at the merchant num ber level and not imported Any imported value overrides the default e CUSTOMER IP ADDRESS Useful for tracking and fraud purposes when processing e commerce transactions e LAST ACTION SUCCEEDED Returns Y whenever a re quested transaction was successful Otherwise it returns N A useful first check to see if a transaction request was approved e RESPONSE CODE FNMS s three digit response code 20 3 ADVANCED TRANSACTION CONFIGURATION 341 e SOFT DESCRIPTOR 1 and 2 Provides information on the cardholder s monthly statement This must be set up at FNMS before you can use it In addition to the fields described above you should also send the account holder s full name FIRST NAME and LAST NAME
210. ions 6 1 General Trevance CN Express and Payment Vault implementations neither require nor recommend the use of wireless networking If Trevance CN Express or Payment Vault is integrated into a system using wireless payment applications you must ad dress the PCI compliance requirements including e Install perimeter firewalls between any wireless networks and the cardholder data environment and such firewalls must deny or control any traffic from the wireless environment into the cardholder data environment e Change wireless vendor defaults including but not limited to keys passwords and SNMP community strings Ensure wireless device security settings are enabled for strong en cryption technology for authentication and transmission e Use industry best practices for example IEEE 802 11i to implement strong encryption for authentication transmis sion For all new wireless implementations it is prohibited to implement WEP if wireless networks are used in the Cus tomers payment environment after March 31 2009 and re move WEP completely by June 30 2010 e Proper key rotation e Removal of all default keys from wireless equipment 377 Test Payment Applications to Address Vulnerabilities 7 1 General In addition to on going internal testing Auric Systems Interna tional monitors outside security sources and product specific mail ing lists to check for product vulnerabilities If a vulnerability i
211. ire a Trevance CN 4250 225 Trevance cannot automatically recognize a PIN less debit transaction because the fields passed for PIN less debit are iden tical to the fields passed for a credit card transaction and some cards can be used for both credit and debit You must include the L TENDER TYPE in all PIN less debit transactions If you do not provide the TENDER TYPE field the transaction is processed as a credit card Authorization Reversals must be submitted within 90 minutes of the Authorization transaction Table 16 11 Chase Paymentech Salem PIN based Debit Authorization Auth Reversal Deposit Sale Track 1 or Track 2 Account Account N A PIN PIN KSN KSN Debit Account Type 3 Tender Type Tender Type Tender Type XCLASS Authorization Authorization MOP MOP Authorization Authorization Code Code Authorization Authorization Date Date Import either Track 1 or Track 2 data not both If both tracks are provided Trevance uses Track 2 for debit transactions CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 226 DIRECT SALEM 2 The key serial number KSN is assigned by Paymentech 3 For U S debit cards this field is always blank For Canadian debit cards you must ask the customer if this is a Consumer Checking or Consumer Savings account and import a value for this field 4 Must be P for Retail POS Table 16 12 Chase Paymentech Salem PIN based Deb
212. irements of your external application 7 Depending on how you configured Trevance to handle ex ports one of the following occurs 6 1 WHAT DOES TREVANCE DO 103 e Trevance places all transactions approved and de clined in a EXP file The file is stored in the BATCH EXPORT directory e Trevance splits approved transactions from declined transactions The declined transactions are placed in a file with a BAD extension along with an indication of why they failed That file is stored in the BATCHDECLINE directory The approved transactions are placed in a file with a OK extension That file is stored in the BATCHEX PORT directory 8 The external application reads the exported file s Trevance automatically keeps importing submitting and ex porting until you tell it to pause or exit You can use any text editor to view any file including DNE EXP BAD and OK The following flow chart describes how Trevance handles one file In reality Trevance handles many real time and batch transac tions at the same time It simultaneously imports one file submits another file and exports yet another file 104 CHAPTER 6 UNDERSTANDING TREVANCE The external application creates a delimited text file IMP and places it in Trevance s BATCHIMPORT directory Trevance imports all records into its internal database and also creates a WRN file of improperly formatted records Trevance either delete
213. ironment Question 4 Does Trevance submit any error trapping codes to the front end application For example suppose the front end application submits a file to Trevance but the processing ser vice doesn t respond Trevance always does its best to transmit all transactions from a batch file to the processing service regardless of format er rors although these are flagged in a warning file Some processing services such as Chase Paymentech Solutions don t return any response if the batch is held Instead you receive a phone call Other processing services do send reject or batch hold messages For more details see Part II Your Processing Service starting on page 193 Real time web interface transactions provide a local response code ASI Response So in the example in the question Trevance would return an ASI Response of 500 with the text Authorization Request Timed Out Waiting for Processor Response The ASI re sponse code returned by the real time authorization interface as of May 2004 are Table A 1 ASI Response Codes Authorization Meaning 100 Approved 200 Declined 300 Processor reject Continued on next page A 1 FREQUENTLY ASKED QUESTIONS 401 Table A 1 Continued from previous page Authorization Meaning 301 Local reject on user password 302 Local Reject 303 Processor unknown response 304 Error parsing processor response 400 Not
214. it 2 Refund Refund Authorization Refund Auth Reversal Account Track 1 or Track 2 Account PIN KSN Debit Account Type 3 Tender Type Tender Type Tender Type Authorization Authorization MOP MOP Authorization Authorization Code Code Authorization Authorization Date Date PIN based debit transactions are retail card present transac tions PIN based transactions require that the customer swipe their card and also provide their personal identification number PIN on a hardware PIN pad After the customer enters the PIN it is encrypted for security purposes The card swipe information the encrypted PIN and the key serial number KSN assigned to the PIN pad are presented to Trevance Authorization and refund authorization transactions that con tain the minimum information plus TRACK 1 or TRACK 2 data 227 a PIN and a KSN are automatically recognized as PIN based debit transactions You should send only one track but if both tracks are sent Trevance uses TRACK 2 since that is preferred by the payment processor Deposit and refund transactions must contain a TENDER TYPE of D to identify them as PIN based debit transactions Track data is required for authorization and reverse authoriza tion transactions The account number is required for deposit and refund transactions During authorization Trevance extracts the account infor mation from the track data and re
215. items that failed to settle or deposit settlements are ex pected to succeed so failing to settle is an error Suggested Action Review the exported file Message No Response Received for Batch After 1 Hour s Expanded Information Batches should never take more than an hour to return Message indicates batch is probably on hold at payment processor Suggested Action Contact payment processor D 4 EVENTS 425 Message Error loading import export template s s Expanded Information Trevance has encountered a problem loading the import export template at startup This should not occur unless there is an installation error Suggested Action Review Installation Message Export FAILED for Processor File s with Error s Expanded Information Trevance received an Batch Response file from the processor but could not export it properly Suggested Action Review specifics indicated in Error message and correct Message File download error s Expanded Information Trevance experienced a problem re trieving a Batch file from the processor Suggested Action Review the Batch Protocol Log of the event and or contact your Payment Processor for assistance Message File upload error s Expanded Information Trevance experienced a problem up loading a Batch file to the processor Suggested Action Review the Batch Protocol Log of the event and or contact your Payment Processor Message Import FAILED for s with Error
216. ity Bill Address City Bill Address State Province Bill Address State Province Bill Address Zip Postal Code Bill Address Zip Postal Code Bill Address Country Ship Address Last Name Ship Address Last Name Ship Address City Ship Address City Ship Address State Province Ship Address State Province Ship Address Zip Postal Code Ship Address Zip Postal Code BML classifies authorization requests as being of three types e Var D Using dummy account numbers e Var Al Real account number stored from previous purchase for existing customer WEB e Var A2 Real account number plus further identifying infor mation Call Centers 308 NOTES Var D only Var D and Var A2 only 3Last four digits of social security number only Must be US CHAPTER 18 FIRST DATA COMPASS PLATFORM Trevance automatically identifies Bill Me Later transac tions Refer to the on line field reference list for details on the specific fields Table 18 9 First Data Compass European Direct Debit Authorization Deposit Sale Refund EDD Country Code EDD Country Code EDD Country Code EDD Country Code EDD Bank Sort Code EDD Bank Sort Code EDD Bank Sort Code EDD Bank Sort Code EDD RIB Code optional EDD RIB Code optional EDD RIB Code optional EDD RIB Code optional Bill Address
217. ive Console Configure gt Processor Settings gt Server Info gt Batch D 4 EVENTS 427 Message Watchdog Batch thread error detected Expanded Information The batch processing thread has be come unresponsive and Trevance will attempt to automatically restart it Suggested Action Monitor the server for further errors and restart Trevance if necessary Message Watchdog Batch thread restart failed s Expanded Information The batch processing thread has be come unresponsive and could not be restarted Suggested Action Please restart Trevance as soon as possible Message Zip Password Error Can t extract file s from archive Please contact technical support Expanded Information Trevance supports various password protocol with payment processors review Trevance Administra tive Console gt Configure gt Processor Settings gt Server Info gt Batch Suggested Action Review password protocol with your payment processor Suggested Trevance logs to provide to Auric Support for batch events are Trevance Log Exception Log Batch Upload Download Logs Batch Protocol Log Configuration Report 428 APPENDIX D ERROR AND EVENT MESSAGES D 4 5 Method of Payment Events Message Internal Error Real Time DB Queue Function Invalid Action Partial reversal sent as specified but partial reversal sup ported for Visa only Expanded Information Trevance supports rules specific to Methods of Payments MOP Suggested Action Review
218. l This is the password associated with the submitter ID SID Re enter the password Click on Enter a DESCRIPTION This description is for your own use in identifying the submitter The description is never sent to First Data 18 1 3 Divisions Click on the DIVISIONS tab to view a screen like the following 18 1 17 CONFIGURING PROCESSOR SETTINGS 285 E First Data Compass Basic Settings Submitters Divisions Server Info Division ID Alias Defaut Currency Description OK Cancel Divisions identify transactions as belonging to different cat egories such as the different parts of a large company mail order phone order web sales or totally different companies as in the case of an in bound call center processing for many merchants Divisions are also used to process and report on transactions in different currencies Although First Data allows you to set the currency value with each and every transaction 1t is typical and considered a best practice to have First Data configure a division for each currency in which you process You ll see this information again on when you configure im port files At that time the division number s and asso ciated description s are automatically listed under the DE FAULT VALUES tab in the DIVISION ID box The divisions grid is sortable Click on a heading DIVISION ID ALIAS DEFAULT CURRENCY DESCRIPTION to change the sort order To add a division cl
219. l phone training is available upon request Please contact support at support AuricSystems com or 603 924 6079 395 Part V Appendices 397 Frequently Asked Questions A 1 Frequently Asked Questions Question 1 How do I install and run Trevance securely Trevance is compliant with Visa s Payment Application Best Practices standard See the Payment Application Best Practices Secure Implementation Guide for Trevance document for de tails For information on accessing this document see Chapter 1 Question 2 Are user accounts designed for application ac cess or individual access to Trevance When you configure Users you decide whether the user is an individual or web application Most of the accounts are used for human access to the application through the Trevance Console TrevCon The console allows users to configure and monitor transaction processing Each time you configure a user you decide what tasks the user can perform User accounts can also be used for access through the web Trevance installs with one default web accessible account WEB You can establish additional accounts if you want to track the source of a transaction if you have multiple feeds into the system you can set up multiple user Ds Question 3 Is Trevance supposed to have direct access with the Internet 399 400 APPENDIX A FREQUENTLY ASKED QUESTIONS No You must use Trevance on a non public network in a secure env
220. lder account with the exported UTID Trevance does not ex port the account number during batch tokenization ACTIONS e Enter U to generate a UTID e Enter UC to check that the supplied UTID is valid This will return valid if the UTID is stored locally on the Trevance server or in a configured Payment Vault e Enter UD To delete a UTID This action deletes the UTID from local storage and from Payment Vault if Payment Vault is configured Once the import file has been saved as TOKEN simply resume the server No further configuration is necessary You will then receive a UTID file in your export folder which contains the following fields UTID Fields MRCHORDR An identifier used to match up the response with the UTID file ACTION Echoed action from the TOKEN file ACCT The last 4 digits of the tokenized account number on successful lookup UTID The generated UTID for action U TM 156 CHAPTER 9 PAYMENTVAULT LAS Last action succeeded Y or N ASIRESP Response code see below RESPTEXT Text description of the response code in ASIRESP These values may be returned for the ASIRESP field in the UTID response file UTID File Responses 100 Approved 309 Local Reject Lookup UTID Failed 310 Local Reject Record UTID Failed 901 Failed UTID lookup 9 6 Real Time Use of Tokenization To look up a UTID or t
221. lds you should send will depend on your market type your business class e commerce MOTO recurring IVR retail and so on and the forms of payment you accept credit card purchase card check debit Bill Me Later ARC POP and so on Working with your Paymentech repre sentative is the quickest way to determine which fields you should send CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 216 DIRECT SALEM Table 16 2 Chase Paymentech Salem Credit Card Authorization Auth Reversal Deposit Sale Refund Exp Date Exp Date Exp Date Exp Date Exp Date Auth Date Auth Date Auth Code Auth Code Account Check PartialAuth Force Full Auth Exp Date Exp Date Exp Date Transactions that contain the minimum information plus an expiration date are automatically identified as credit card trans actions Sending a C in the TENDER TYPE field explicitly identi fies credit card transactions Credit card account values can contain spaces or dashes Paymentech recommends returning the original RESPONSE CODE which will typically be 100 with all deposit transactions Autho rization Reversals require the Authorized Amount to be included in the reversal Action Code for Auth Reversals is L In the Amount AMT field send the amount that was originally authorized Au thorization Reversals are supported for Visa MasterCard and MC Diners Partical Authorization is supported for Ame
222. ll not see an icon in the bottom tray on your desktop 4 1 Establishing a Log On Account for the Service You may need a log on account if you need special privileges for remote or local configuration In that case you must establish the log on account before you install Trevance as a service 4 1 1 All Directories Local If all your directories including import export archive and warn ing are on the same computer as Trevance the service can run as the System Account If you don t need a special account the server will log on to the local system account by default 83 84 CHAPTER 4 WINDOWS SERVICE 4 1 2 At Least One Remote Directory If you place even one directory on a remote computer you need a user account that serves as the Log On As account for the service That user account must have read and write privileges for the directories and the files in the directories You must create the account on the same computer with Trevance The exact procedure changes depending on the operating system for your computer The following procedures assume e You re running Trevance as a service e The import and export are configured to a remote computer e The two computers are peers in a workgroup with no domain users available e The user account is called Trevance this is an example only you may name the account anything you like 4 1 2 1 XP Professional a e w N H Open User Acco
223. local Trevance Doc directory You may also find Paymentech s 120 byte Batch Technical Spec ification and On Line Processing Technical Specification to be use ful Please contact your Paymentech representative for copies 191 192 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM Configuring Processor Settings To configure the processor settings 1 2 Click on CONFIGURE If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW Click on PROCESSOR SETTINGS to view a screen like the fol lowing Basic Settings Submitters Divisions Server Info Electronic Reports PID PID Password Cancel The screen tabs and boxes that you see are set up specif ically for Paymentech Gateway Paymentech provides you with the documentation required to complete this configu ration 16 0 1 Basic Settings Click on the BASIC SETTINGS tab BASIC SETTINGS information identifies the company present ing the transactions to Paymentech In other words it iden tifies the company that is running Trevance 193 This is required information which comes from Paymentech Fill in the PID for batch transactions only The PID Pay mentech presenter ID identifies your installation Fill in the PID PASSWORD for batch transactions only This is the password associated with the Paymentech presenter ID 16 0 2 Submitters Click on the SUBMITTERS tab to view a s
224. log For PCI compliance you must monitor and store your logs in a centralized location The Trevance logs to be transported to the centralized location are located in the TrevanceData folder Trevance Log Contains the general activity of the Trevance application service Exception Log Contains server related and Trevance inner working events exceptions are not always indicative of a problem occurring Socket Log Contains Real Time communication events with the Payment Processor Web Log Contains Real Time communication events with Mer chant s business environment communications sent to and from Trevance via the web interface Batch Upload Download Logs Contains information on Batch upload and download files Batch Protocol Logs Contains information at Batch Commu nication level with payment processor D 3 CONFIGURATION REPORT 413 Windows System Event Logs These logs are located under the Administrator Tools gt Event Viewer Corresponding Errors events logs may be useful for some resolutions D 3 Configuration Report The configuration report provides information on how Trevance is configured in the merchant s business environment For the purposes of technical support Auric Systems International can not use the xml version of this report The following way of obtaining the configuration report is sanitized of sensitive infor mation Run Trevance Administrative Console gt Help gt Config
225. logged in as an administrator not as the default ADMIN user that you have set the server passphrase and that you have entered the serial number and activation key Trevance won t change to test mode until those tasks are com pleted Contact your processing service and alert them that you are about to test transactions Repeat the test that you conducted in demo mode At the end of the test contact your processing service to make sure the transactions actually arrived Before you switch to production mode make sure that 5 3 TESTING YOUR CONFIGURATION IN TEST MODE 99 e You have no IMP files waiting in the BATCHIMPORT di rectory especially dummy IMP files created solely for con figuration and testing e Your processor settings allow for live transactions If you change Trevance to production mode but the word TEST still appears on the upper right hand corner of the screen you must re configure processor settings See Part II Your Pro cessing Service starting on page 193 Understanding Trevance Trevance makes things simple Trevance takes transactions as simple text files or web mes sages automatically translates them into your processing ser vice s detailed specifications and sends them to the processing service The processing service sends the results back to Trevance and Trevance decodes them it puts the processing service s detailed specification into simple text files or web re
226. mber of transactions asso ciated with this device Fraud email transactions Number of transactions asso ciated with this email Y if customer browser allows Flash Otherwise N Y if customer browser allows JavaScript Otherwise N Fraud Kaptcha Match Flag Y if an RIS has a corre sponding Kaptcha record Otherwise N Y if transaction is from a mobile device Otherwise N Fraud mobile device type A descriptive text of the de vice Y if device is wireless CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 262 DIRECT SALEM Table 16 27 continued from previous page Trevance Description Field FRAUDNWT Single character describing the type of network used Value Description A Anonymous H High School L Library N Normal P Prison S Satellite FRAUDPYB Payment brand identified during fraud scoring FRAUDRGN Fraud region associated with customer If region is up percase it represents a country e g CA for Canada If region is lowercase it represents a state or province e g ca for California FRAUDRPC Y if device is a remotely controlled computer Otherwise N Return FRAUDSCR Fraud risk score A two digit number See your Chase Paymentech documentation for details on how to inter pret the score 16 3 FRAUD SCORING 263 Table 16 27 continued from previous page Trevance Description Field FRAUDST Fraud status code A four character value See your Chase Paymentech documentation for details on how
227. me procedure also 1 On the computer where Trevance is installed open Trevance Click on Configure Click on Pause Server to Configure Items Below Click on Directories Set up the UNC path to the folders on the remote machine Click Click on File DOs A O AA ak Click on Exit To change directories in the future you must first use your user name and password to log on to the computer where Trevance is installed 86 CHAPTER 4 WINDOWS SERVICE If Trevance is running as a service stop the service through the Windows Control Panel that action automatically shuts down Trevance Do not reboot Re open Trevance as an application make the changes you want and then pause and exit Restart Trevance as a service Switching between Application and Service Trevance auto matically installs as a service You can use the command line to remove the Windows service that is to run Trevance as an application and also to re install Trevance as a service Table 4 1 Trevance as a Service Action Command Line Remove the service trevance UNINSTALL Remove the service trevance INSTALL After Trevance is installed as a service either automatically during installation or manually using the command line you must go to the Windows control panel Administrative Tools Services to actually start running the service You also need to stop running the service before you can use run T
228. ment Billing Agreement EG E Auth A PYTOKEN Do Express Payment PYPAYER ED A Auth from Order A PYORDR Do Auth AU O Do Auth AU O Auth from A PYCID Do Reference Do Reference Contract AU B AU B Reauth A PYTID Do Re Auth Do Re Auth AU A AU A Auth w Billing AB PYTOKEN Do Express Payment Agreement PYPAYER ED B Auth from Order AE PYORDR Do Auth Do Auth with Billing AU E AU E Continued on next page 239 Table 16 19 Continued from previous page Action Trevance Action Required Fields Online Batch Sale S PYTOKEN Do Express Payment PYPAYER ED A Queue to batch on SUCCESS as Do Capture RG P Sale S PYCID Recurring Sale RG R Refund Memo R CAPDATE Memo Post PYTID Refund RD M Refund R PYTID Queued to Batch Full Refund RD F Partial Refund PR PYTID Queued to Batch Partial Refund RD P Capture D PYTID Queued to Batch Do Capture RG P Capture Memo D CAPDATE Memo Post PYTID Sale RG M Final Capture FD PYTID Queued to Batch Do Capture RG F Auth Reversal L PYTID Do Void Do Void AR A AR A Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM 240 Table 16 19 Continued from previous page Sale Capture or Refund Transaction from Queued batch Must be sent prior to batch settlement Action Trevance Action Required Fields Online Batch Order Reversal L PYORDR Do Void Do Void AR O AR O Auth Reversal w
229. mentech assign a specific transaction class to each division Select MERCHANT DEFAULT to use the Paymentech configuration PRODUCT DELIVERY TYPE Optional field Leave it blank if you re not sure how to fill it in ECOMMERCE This field describes the method by which ecom merce transactions are received The most common is EN CRYPTED HTTPS indicating a secured web transaction You can set a different default value at Paymentech for each di vision If you use that method select MERCHANT DEFAULT 16 0 13 Configure Web Transaction Defaults Refer to Configuring the Real Time Web Interface on page 80 for general information on web transaction configuration o Web Interface Settings Wow The Web Interface accepts real time transactions through an HTTP Interface IV Enable Web Interface General Web Request Format Web Response Format Transactions are accepted by Trevance via HTTP POST in tagged format A short name for each field is given along with the field s value as shown in the preview Any field may be sent with any transaction and fields may be sent in any order Preview WEBUSER WEB amp WEBPASS WEBPW amp MRCHORDR 1 2345678904BCDEF amp ACCT 5465928239 gt Select Fields for Preview Copy Delimiter Options C Tab Fiskd Valuo Separator fe 6 URLEncoded C CRALF I Value is Quoted iken fe Fiel Default Cancel 209 1 Click on CONFIGURE 2 If the server isn t
230. mode Click on to view Trevance must be shut down and restarted in order to change run modes The server will be shut down automatically once the mode change is complete Are you sure you want to change run modes Click on to view Trevance Console E LD Run Mode Change Complete The Trevance Server is Shutting Down Click on In the new mode Trevance is paused If you want to be gin processing transactions in test mode you must resume Trevance Click on Configure then on Resume Server when Configuration Com plete 5 2 2 Switching between Modes You can switch back and forth between modes at any time 1 Click on Set Run Mode to view 98CHAPTER 5 TESTING AND ACTIVATING TREVANCE Set Run Mode Demo Mode Transactions not sent to Payment Processor but handled locally by Trevance demo server e S Test Mode Transactions sent to Payment Processor in Test TE T Mode Use for final test and configuration before going into production Production Mode Live transactions submitted to Payment C Production TEREE E Cancel 2 Click on the radio button for the mode you want demo test or production 3 In the new mode Trevance is paused If you want to begin processing transactions you must resume Trevance Click on Configure then on Resume Server when Configuration Com plete 5 3 Testing Your Configuration in Test Mode Make sure that you have
231. ms Please see Appendix B Level III Transac tions on page 353 MasterCard and Visa accept level III transactions You must explicitly identify Purchase Card transactions by importing P in the TENDER TYPE field American Express provides a similar functionality through the use of four American Express TRANSACTION ADVICE ADDENDUM fields The field reference list gives details on how these fields are used Table 16 6 Chase Paymentech Salem Third Party En crypted Card Auth Auth Reversal Deposit Sale Refund Expiration Date Exp Date Expiration Date Expiration Date Expiration Date Encrypt Flag Encrypt Flag Encryption Flag Encryption Flag Encryption Flag Auth Code Authorization Code Auth Date Authorization Date Third party encrypted credit card account values are a secure way for banks to provide account information to call centers with out revealing a customer s credit card account A bank provides these numbers along with customer con tact information The account value is encrypted using a Pub lic Private Key algorithm The bank maintains the key for en crypting the account and the processor maintains the key for de crypting only The merchant is unable to decrypt the account Encrypted credit card transactions require the same informa tion as normal credit card transactions with the addition of an EN CRYPTION FLAG This ENCRYPTION FLAG is provided by Paymentech 221 a
232. ms To get the best performance from CN 3500 use Windows Server 2008 on a machine with 2 GHz processor or better and with a minimum of 1 Gbyte of memory 9 10 CHAPTER 2 INSTALLING TREVANCE CN 4200 running at peak load performs best on a dual core 2 GHz processor with 2 Gbyte of memory You should keep a minimum of 30 Gbytes of free disk space to ensure a long lived and trouble free installation Additional information about system requirements is available at www AuricSystems com 2 1 3 Important Information Your processing service has its own minimum operating require ments Contact your processing service directly for more informa tion 2 2 Installing Trevance 2 2 1 Installation Options Trevance is always installed on your system e As both an application and a Windows service the Windows service is not active e In the demonstration demo mode not in the test or pro duction mode e Asa CN 3500 demo After installation you can change any of those defaults When you re configuring Trevance Auric Systems Interna tional strongly recommends that you e Run Trevance as an application not a service e Configure using the demo mode e Send your first transaction s to your processing service us ing the test mode Demo mode is ideal for trying out configuration options and Trevance operations without affecting real transactions Test mode is ideal for testing your configuration with your proce
233. n Chapter 4 on configuration reports see page 103 and debug logs see page 101 8 1 Maintenance Contract Trevance comes with a year of free maintenance support and updates When the year expires you may renew the maintenance contract by contacting Auric Systems International Maintenance information appears on the Help menu after you ve entered a valid serial number and activation key For information on the expiration date of your contract and on renewing the maintenance contract 1 Click on Help 2 Click on About Trevance Transaction Gateway 3 Scroll down to MaintenanceExpires to find the expiration date for your maintenance contract You must renew your maintenance contract on or before the expiration date shown 4 Click on 5 Click on Server 6 Click on Pause 7 Click on Help 8 Click on Maintenance Contract to view a screen like the follow ing 139 140 CHAPTER 8 MAINTENANCE Renew Maintenance Contract x To renew your maintenance contract follow these easy steps 1 Follow this link to Auric Systems Intemational s support page to obtain anew activation key http www AuricS ystems com renew_4200 2 Copy and paste or type in the new activation key click OK and you re ready to go AcivaionKex Jj _ caret Lie 9 Follow the directions for renewing your maintenance contract or call Auric Systems International 8 2 Configure Warnings Configure Import Warnings
234. n Express AM purchase card transac tions Table 18 5 First Data Compass Purchase Card Level 111 Continued on next page 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 303 Table 18 5 Continued from previous page Auth Auth Reversals Deposit Sale Refund Exp Date Exp Date Expiration Date Expiration Date Exp Date Auth Date Purchase Order Purchase Order Number Number Auth Code Tax Tax MC MC Alternate Tax Amount Alternate Tax Amount Alternate Tax ID MC Alternate Tax ID MC Discount Discount Tender Type Tender Type Authorization Code Authorization Code Purchase card level III transactions require the same mini mum information as level II transactions plus several additional fields Some fields are required only for a specific card type MC and are so marked in the chart Trevance supports supplemental records for purchase card level III line items Please see Appendix B Level III Transac tions on page 353 MasterCard and Visa accept level III transactions You must explicitly identify Purchase Card transactions by importing P in the TENDER TYPE field American Express provides a similar functionality through the use of four American Express TRANSACTION ADVICE ADDENDUM 304 CHAPTER 18 FIRST DATA COMPASS PLATFORM fields The field reference list gives details on how these fields are used Table 18 6 First D
235. n field is assumed to be an authorization You may need to change other defaults such as Division ID Class merchant default MOTO recurring or E commerce Tender credit card purchase card or check Submitter ID Prod 3 4 CONFIGURING EXPORTS FOR BATCH FILES 43 Type for example gift certificate or shareware and ECom merce for example non secure or secure The choices that appear depend upon a your processing service and b the information you entered when configuring processor settings such as submitter and division ID information 16 Click on After Import to view Import File Security Default Values After Import After Import C Delete File i Here you tell Trevance how to handle the import file after importing it The default to change the extension of the real time or batch file from IMP to DNE and then save it The file is renamed or deleted if you change the default as soon as it is successfully loaded into the Trevance database 17 When your configuration is finished click on to leave the Configure Import screen 3 4 Configuring Exports for Batch Files After your processing service approves or declines the transaction it sends the result back to Trevance Trevance prepares the processed transaction for export to your external application With the Configure Exported Files screen you tell Trevance what type of information which fields to export to your external ap pl
236. n real time All four fields in batch See refund note in following section MoneyPak transactions are a two step process requring an au thorization followed by a capture action either Deposit or Re fund Both sales and refunds must be authorized before capture Auth and Refund Auth MoneyPak acts much like a debit card When the Authoriza tion is performed money is moved between the card holder s ac count and the payment processor When the Deposit or Refund 235 transaction is performed the money is moved between the pay ment processor and the merchant account MoneyPak Authorizations A PA FA and RA return the fol lowing MoneyPak specific fields e MoneyPak Confirmation ID MPCONFID e MoneyPak Original Transaction ID MPORTXID MoneyPak transactions do not return Auth Codes The Auth Code export field is blanks Youll also receive the standard Chase Paymentech Response Code this should be returned in the Deposit or Refund trans action The two MoneyPak specific values need to be provided with the Deposit and Refund batch transactions Alternatively when Trevance receives a deposit transaction it will attempt to look up this information internally based on the account number amount division order number and authorization date The amount field for a deposit or refund transaction must match the amount that was authorized This is similar to debit card functionality Multiple deposits against
237. n the configuration report 17 Click on 3 6 3 Formatting the Web Response The Trevance web interface returns results in a delimited text format By default the delimiter is a pipe You use the Web Re sponse Format screen to define the order in which fields are returned You can also choose to send back field names Unlike the Preview on the Web Request Format screen which merely gives an example of what you can send the Preview on the Web Response Format screen shows the exact fields that will be returned for each and every transaction In addition to specifying fields such as Auth Code Date and Re sponse Code you should ask Trevance to return the Last Action Succeeded field This field is always 1 for a successful transaction or O for a failed transaction and is independent of the process ing service s response code It allows you to quickly discover if a transaction succeeded Auric Systems International recommends including Last Action Succeeded when you format the response see Step 4 below 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Real Time Web Interface then the Web Response Format tab to view 3 6 CONFIGURING THE REAL TIME WEB INTERFACE 63 3 o Web Interface Settings a X The Web Interface accepts real time transactions through an HTTP Interface V Enable Web Interface General Web Request Format Web Re
238. n you configured above You will receive a two field response e LAS Last Action Succeeded e Response Message These fields will be delimited or quoted according to the current web interface export settings Example response 1 SUCCESS 12 0 6 3 Auto Settle You are able to optionally set a daily automatic settlement time for your batches From the Trevance Console e Configure Options Real Time tab e Check Automatically Settle Real Time Transactions e Set an Auto Settle time When auto settle is enabled Trevance automatically sends a settlement request every day Trevance must be running at the requested settlement time 178 CHAPTER 12 4250 FEATURES 12 0 7 ValueLink and Disney Rewards Cards Trevance supports Value Link stored value gift cards through the Chase Paymentech Direct Platform A custom CN 4250 version is available for processing Disney Rewards cards through the Chase Paymentech PNS Platform Please contact Auric Systems International regarding support for these specific payment types 13 Monitoring Trevance provides a built in monitoring service called Ping To use the monitoring 1 send a POST command to http localhost 8004 PING 2 include the WebUser and WebPass fields 3 get back 200 Success response or error if Trevance is down 179 14 Database Management When using the embedded database Trevance creates a backup file during the normal daily maintenance When usi
239. nal fields Either e Set a Fraud ID for the Division in the Trevance Console will activate Fraud checking for all transactions e Send a Fraud ID in the real time transaction allows you to decide when to check fraud on a transaction by transaction basis In addition to this simple step there are additional fields you can send that help the Safetech Fraud Scoring system evaluate a transaction Table 16 26 Optional Fields for Safetech Fraud Trevance Description Field CUSTGNDR Customer Gender M or F CUSTID Customer Identifier A unique identifier from your or ganization to track multiple transactions from the same customer CUSTIDDT Date and time the CUSTID was created CUSTIP Internet address of customer during an E commerce transaction 16 3 FRAUD SCORING 259 Table 16 26 continued from previous page Trevance Description Field CUSTSID Merchant generated session ID for the customer FENCAMT Fencible amount Cash value of fencible items in order In addition to the fields cited above you should also send the billing and shipping address as well as any billing and shipping email addresses and phone numbers that are associated with the transaction 16 3 2 Fraud Responses Fraud responses are returned separately from the processing re sponse code Table 16 27 Safetech Fraud Response Fields Trevance Description Field CUSTPRXY Y if customer connected through a proxy Otherwise N CUSTTZ
240. national technical support at e support AuricSystems com e 603 924 6079 441
241. nce to ex port an Encrypted Account EACCT field and to accept both ACCT for initial transactions and EACCT for subsequent ac tions fields as input Typical data flow is as follows e Merchant process web site order entry system etc sends Trevance a transaction with a credit card bank account etc value in the ACCT field e Trevance processes the transaction normally e At export time Trevance detects the request for an EACCT field Trevance sends the ACCT field value to ACE and waits for the encrypted response e Upon successful encryption Trevance returns the encrypted value in the EACCT field The Merchant process can save 11 3 ACE RELATED TREVANCE ERROR MESSAGES 171 this encrypted value for later submissions see below for possible error responses e On subsequent submissions the merchant process sends Trevance the encrypted value in the EACCT field e Trevance takes the EACCT value and sends it to ACE for decryption e Upon successful decryption Trevance submits the transac tion with the unencrypted account number to the processor 11 3 ACE Related Trevance Error Messages There are four encryption and decryption failure scenarios Two for online real time web service and two for batch 11 3 1 Online Encryption Failure The error is logged but does not cause the transaction to fail Possible log messages e No server configured No Encryption Server to Encrypt Accoun
242. nd if you are using a web interface the default WEB user But Trevance won t let you test your configuration or really process transactions until you ve created a new administrator and deleted the default ADMIN user You should have made this change al ready but if you haven t now is a good time 3 2 1 Adding a User You might want to add separate users to the system to handle batch files archives and other tasks If you are using Trevance to process transactions from several web sites you might want to add a separate web user for each web site so that you can track transactions separately To add a user to the system 8 2 ADDING DELETING AND ADMINISTERING USERS1 Make sure you are logged into the system as an administra tor Click on Configure Click on Users to view Administer Users E User First Name Last Name a ADMIN Admeistratwe User WEB Web User Click on au to view E A unique name for the user account any combination of 4 to 20 characters This name gt automatically appears in full capital letters The user P name is not case sensitive JOE and joe are A Priviege Settings identical User Type C Web Interface Console The type of user The user may be web interface gt console or administration Trevance allows multiple C Administrator users of each type FastName O Last Name A unique password you ll see in the boxes E
243. nd is specific to the bank or other entity supplying the account numbers Transactions that contain the minimum information plus an ENCRYPTION FLAG are automatically identified as third party en crypted credit card transactions The encrypted credit card account value is sent in the ACCOUNT field just as it is with unencrypted credit card transactions Table 16 7 Chase Paymentech Salem Electronic Checks Deposit Sale Refund Authorization Routing Number Routing Number Routing Number Routing Number BillAddress BillAddress BillAddress Bill Address First Name First Name First Name First Name BillAddress BillAddress BillAddress Bill Address Last Name Last Name Last Name Last Name Transactions that contain the minimum information plus a ROUTING NUMBER also called a bank ID or bank routing num ber are automatically identified as electronic checks eChecks Trevance allows you to accept checks electronically that is over a secure web interface This type of transaction is not designed for handling accounts receivable conversion ARC or point of purchase POP check conversions See Accounts Receivable Check Conversion ARC on page 241 and Point of Purchase Conversion Truncation POP on page 242 Place the checking account number in the ACCOUNT field and the Routing Number Bank ID or Bank Routing Number in the ROUTING NUMBER field The ACCOUNT field can contain spaces
244. ne as CN Express 393 CHAPTER 13 ENCRYPT ALL NON CONSOLE 394 ADMINISTRATIVE ACCESS e Access to the Settings Manager is maintained by operating system level user permissions e All configuration changes must occur through the CN Express Settings Manager e All non console administrative access to the CN Express system via Windows Remote Desktop or other remote ac cess methods must employ secure authentication and strong encryption to prevent the compromise of administrative cre dentials or sensitive data For example if Windows Remote Desktop access is used it must be configured to require strong encryption minimum of 128 bit key Refer to this Microsoft TechNet article for an example http technet microsoft com en us library cc770833 aspx 13 4 Payment Vault e Access to the PaymentVault configuration file is main tained by operation system level user permissions 14 Maintain Instructional Documentation and Training Programs 14 1 General This document provides the basis from which all Customers Re sellers and Integrators learn the prudent practices and recommen dations for installing Trevance CN Express and PaymentVault in a PCI compliant manner Customers Resellers and Integrators should maintain their own internal PCI compliance training for their personnel to en sure they are familiar with the PCI compliance aspects of running Trevance CN Express and PaymentVault Additiona
245. need to know the current pass word they must call Chase Paymentech and request a manual password reset With a manual password reset Chase Paymentech support generates a new password and gives it to the merchant The mer chant must then enter the password into the password box in the Trevance console Once the password change takes effect man ual reset can take up to two hours Trevance is able to connect to Chase Paymentech using the new password Manual password reset is not recommended except for rein stallation or other recovery methods it should not be used on a regular basis Except for manual reset the merchant should not change the password using Trevance console In particular the user may not enter an arbitrary new password The new pass word must be supplied by Chase Paymentech in the manual reset process 16 0 10 Implementation Details Under the hood there are actually two passwords e The SSH login password CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 204 DIRECT SALEM e The Zip file password batches are sent and response files received in encrypted zips Automatic password updates and the 30 day expiration apply only to the SSH login password not the zip file password How ever a manual reset changes both the Zip file password and the SSH login password Trevance maintains the following information in the database e The current S FTP password e The current Zip password e The last working S FTP
246. ng G Choose Install Location Choose the folder in which to install Trevance E Setup will install Trevance in the Following folder To install in a different folder chck Browse and select another folder Click Install to start the installation Destination Folder C Program Files Trevance Space required 41 5MB Space available 56 2GB Browse lt Back Install Cancel 14 CHAPTER 2 INSTALLING TREVANCE The Space Required and Space Available figures let you know if you have enough space on your computer to install Trevance If you don t cancel the installation until you have created enough space To change the default installation directory click on Browse 7 Click on to view Trevance Transaction Gateway Setup Please select a processor x 8 Select your processing service 9 Click on to view a screen like the following Trevance Setup nal oles Installing Ka Please wait while Trevance is being installed S Create shortcut C Documents and Settings All Users Start Menu Programs Trevance Transa AAA Extract QuickPrint dll a Extract readme bet Extract trevance exe 100 Extract TRServiceManager exe Checking For unique installation INSTDIR C Program Files Trevance Create folder C Documents and Settings All Users Start Menu Programs Trevance Create shortcut C Documents and Settings All Users Start MenulPrograms Trevanc
247. ng a transaction from an internal queue Suggested Action Please provide the message and error number to Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the Trevance logs suggested below Message Error in socket interface s Expanded Information An unexpected error occurred in send ing or receiving real time transactions through the socket The message will contain more information about the cause of the er ror Suggested Action Review message and take appropriate ac tion Message Error saving capture information for authorized trans action s submitted as Auth Capture Error was s Please contact Auric Systems technical support D 4 EVENTS 421 Expanded Information Trevance received a Sale transac tion Internally this is handled as a separate authorization to the Payment Processor followed by a batch settlement The au thorization succeeded but Trevance failed to save that successful Auth for the Batch Settlement Process CN 4250 Auto Settlement functionality Suggested Action Contact Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the Trevance Logs suggested below Message Error saving qualification information for autho rized transaction s Error was s Please contact Auric Sys tems technical support Expanded Information Trevance saves qualification informa tion for authorized transaction
248. ng the remote database you should perform a manual backup procedure on a daily maintenance basis This backup file should be removed from the server and stored in a secure location as it is possible it contains encrypted credit cards Trevance maintains Recovery Logs which contain the changes made to the database since the last backup The combination of the database backup and the recovery logs allow you to recover the Trevance operational state 14 1 Restore The restore tools are kept in the repair directory that by default installs at c AuricSystems Trevance repair To restore a backup I stop Trevance 2 locate the Data directory default c AuricSystems Trevance data 3 4 copy the latest backup gbk file to the repair directory and rename the prod fdb file to prod old fdb rename it prod gbk run the restore command gbak c user userid password passwd prod gbk prod fdb contact tech support for the userid password of the embed ded system move the prod fdb file into the data directory start Trevance 14 2 Recover In order to recover the transactions created since the last backup was made 181 182 CHAPTER 14 DATABASE MANAGEMENT 1 copy all the files in the RecoveryLog PROD directory of the old Trevance installation to the new installation start the Trevance Console and log in as the administrator pause Trevance select File Restore from Recovery Log Or 19 res
249. nistrator Users dialog e Create a new user e Set the User Type to Web Service or Web Console e Click the Manager checkbox to give Web Console users ac cess to ability to pause resume CN Express or reload redo logs e Enter a strong password of at least seven 7 characters and both alpha and numeric characters e Create a uinque user ID for each person requiring access to the CN Express console Provide Manager access only to those users who must man age control CN Express remotely 368 CHAPTER 3 SECURE AUTHENTICATION FEATURES If a Manager fails to log in after six attempts they are locked out of the system for 30 minutes The exception to this is the WEB user accounts for the real time web transaction interface A lock out in this instance would lead to a denial of service Manager accounts are automatically logged out after 15 min utes of inactivity Non managers users are not automatically logged out since typically they are doing long term monitoring Auric recommends that Manager accounts be used solely for starting stopping CN Express remotely and not for monitoring purposes 3 4 Payment Vault All access to PaymentVault is via Trevance or CN Express Access to the PaymentVault server is tied to the IP addresses listed in Payment Vault Log Payment Application Activity 4 1 General Trevance and CN Express maintain a running log of Adminis trative Manager and Console us
250. nquiry RP Redemption Sale PV Redemption Sale Reversal Void Sale AU Authorization AR Authorization Reversal RC Redemption Completion CV Redemption Completion Reversal Void DP Deposit CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 252 DIRECT SALEM Table 16 24 continued from previous page Trevance Paymentech Description Action Action Code Code R RF Refund VR RV Refund Reversal 16 1 2 1 Required Fields All Gift Card transactions require the following fields e ACTION e DIVISION e XCLASS e MRCHORDR e ACCT e TENDTYPE set to G All transactions except the Balance Inquiry BA require the Amount AMT field as well Balance Inquiry returns the current account balance in the CURBAL field 16 1 2 2 Issue Account IS Issue and activate a gift card account with a beginning value e On line and batch e Amount field is value to put on card cannot be 0 16 1 2 3 Issue Account Reversal IR Reverse a prior issue account transaction e On line only 16 1 GIFT CARDS 253 16 1 2 4 Deactivate Close Account CL Set gift card account to inactive state e On line only e TODO Does CURBAL contain the previous balance 16 1 2 5 Deactivate Close Account Reversal CR Reverse a prior deactivate transaction e On line only e Amount must be previous balance returned by the deactivate transaction 16 1 2 6 Reactivate Account AO Reactivate a gift card account that was previously deactivated e On line only e
251. nterface has a separate socket Suppose Paymentech provides an address that looks like this 192 1 1 42 8443 e In the SOCKET IP type 192 1 1 42 e In the SOCKET PORT type 8443 Trevance allows you to optionally configure a primary and failover Socket IP This allows you to configure one connec tion communicating with Chase Paymentech s Salem facility and one communicating with Paymentech s Tampa facility If you are not configuring failover capabilities enter only the first Socket IP value Select Primary Socket Connection This defaults to the first Socket IP address If you want to select the second as your primary click the checkbox next to the Socket 2 IP field Fill in the FTP BATCH boxes based on information you receive from Paymentech CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 198 DIRECT SALEM Basic Settings Submitters Divisions Server Info Electronic Reports Real Time Using SSL V Enable Real Time Processing Primary Socket IP Port Vv Socket 2 IP Port E SFTP Batch Y Enable Batch Processing SFTP Server IP SFTP User SFTP Password Cancel 26 For encrypted transport through SFTP check the Use En crypted Transports box then fill in the boxes based on information provided by Paymentech Both Real Time and Batch connections are encrypted For SFTP using the 3250 see NetConnect section below 37 Cicko Check your import an
252. o be sent with this trans action in addition to the standard fields documented above e Online and Batch Chase Paymentech action or action taken by Trevance for transactions that are handled locally First line names the PayPal Express Checkout action Second line shows the Chase Paymentech Method of Payment along with Paymentech s Subtype For example a notation of ES A indicates this is Paymentech Action Code ES subtype A Table 16 19 Chase Paymentech Salem PayPal Action Trevance Action Required Fields Online Batch Set for Auth SA RTRNURL Set Express Payment CNCLURL ES A Set for Order SO RTRNURL Set Express Payment CNCLURL ES O Set for Billing SC RTRNURL Set Express Payment Agreement CNCLURL ES C Set for Auth w SB RTRNURL Set Express Payment Billing Agreement CNCLURL ES B Set for Order w SE RTRNURL Set Express Payment Billing Agreement CNCLURL ES E Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM 238 Table 16 19 Continued from previous page Agreement Action Trevance Action Required Fields Online Batch Get for Auth GA PYTOKEN Get Express Payment EG A Get for Order GO PYTOKEN Get Express Payment EG O Get for Billing GC PYTOKEN Get Express Payment Agreement EG C Get for Auth w GB PYTOKEN Get Express Payment Billing Agreement EG B Get for Order w GE PYTOKEN Get Express Pay
253. o check that the supplied UTID is valid e Enter UC in the ACTION field e Enter the UTID in the UTID field Returns e LAS Y on successful lookup N on failed lookup e ACCT last 4 digits of tokenized account number if suc cessful To delete a UTID from local storage and from Payment Vault if Payment Vault is configured enter UD in the ACTION field 9 7 REAL TIME UTID UPDATES 157 Returns e LAS Y on success or N if the UTID was not found You will see UTID Delete succeeded in the comment section Click OK after entering Payment Vault URL 9 7 Real Time UTID Updates General Security Real Time File Extensions Paymentvault Troubleshooting Delete UTIDs After 7 Days UTID Station Identifier 132 UTID Migration Block Size 200 JV Immediately Store UTIDs to Paymentvault Payment Vault URL You can optionally specify a secondary Payment Vault URL to use for failover Secondary Payment Vault URL I Use Legacy Payment Vault Encryption Cancel Trevance transfers batches of new UTID values to PaymentVault every minute In order to transfer UTIDs to Payment Vault im mediately this option needs to be configured in the Console e From the Trevance Console select PaymentVault from the Options tab e Select the option to Immediately Store UTIDs to Payment Vault e Enter the Payment Vault URL TM 158 CHAPTER 9 PAYMENTVAULT e Click OK
254. ode Trevance automatically recognizes retail credit card swipe transactions Either TRACK 1 or TRACK 2 data can be provided If both are provided Trevance uses TRACK 1 since it contains more data During authorization Trevance extracts the account and ex piration date from the track data and returns it in the ACCOUNT and EXPIRATION fields Merchants must remember this data for later submission to Trevance in a deposit or refund transaction You must not store track data after the authorization is complete Trevance in compliance with Card Association rules does not export the track data after processing 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 317 Table 18 12 First Data Compass Retail Credit Card Manually Entered Authorization Deposit Sale Refund Expiration Date Expiration Date Expiration Date Expiration Date Zip Code Zip Code Zip Code Zip Code Class Class Class Class Authorization Date Authorization Code Manually entered retail credit card transactions look very much like card not present credit card transactions You must provide the minimum information plus the card s EXPIRATION DATE and ZIP CODE postal code Manually entered retail credit card transactions must import a P in the TRANSACTION CLASS field 19 Transfirst This chapter contains information on configuring processor set tin
255. ode U S or postal code Canada and United Kingdom Additionally obtain and transmit the card security code CVV2 CID information with authorization transactions 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 299 18 3 4 Advanced Configuration The following tables show the basic transaction information for each type of transaction Once you get beyond the basics you must consult with your First Data representative to determine what data you should be sending for maximum efficiency and low est processing fees also called interchange First Data s On Line Processing Technical Specification and Batch Technical Specification describe over 160 possible fields that can be transmitted The specific fields you should send will depend on your market type your business class e commerce MOTO recurring IVR retail and so on and the forms of payment you accept credit card purchase card check debit Bill Me Later and so on Working with your First Data representative is the quickest way to determine which fields you should send Table 18 2 First Data Compass Credit Card Authorization Auth Reversal Deposit Sale Exp Date Exp Date Exp Date Exp Date Exp Date Auth Date Auth Date Auth Date Auth Date Account Check Partial Auth Force Full Auth Exp Date Exp Date Exp Date Continued on next page 300 CHAPTER 18 FIRST DATA COMPASS PLATFORM Table 18 3 Continued from p
256. ome cards can be used for both credit and debit You must include the L TENDER TYPE in all PIN less debit transactions If you do not provide the TENDER TYPE field the transaction is processed as a credit card Authorization Reversals must be submitted within 90 minutes of the Authorization transaction CHAPTER 18 FIRST DATA COMPASS PLATFORM Table 18 8 First Data Compass Bill Me Later Authorization Deposit Sale Refund BML Customer Type BML Customer Type BML Customer Type BML Customer Type BML Item Category BML Item Category BML Item Category BML Item Category Product Type Product Type Date of Birth Date of Birth T and C Version T and C Version T and C Version T and C Version Freight Freight Freight Freight Customer Registration Date Customer Registration Date Customer Registration Date Customer Registration Date Customer Social Security Number Authorization Code Customer Social Security Number Bill Address First Name Authorization Date Bill Address First Name Bill Address Last Name Bill Address Last Name Continued on next page 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 307 Table 18 8 Continued from previous page Authorization Deposit Sale Refund Bill Address Last Name Bill Address Last Name Bill Address C
257. on to the next how is the data maintained in the historical database To update Trevance Auric Systems International provides an update DLL and a small database of changes During startup Trevance checks the database version in the small database against the current live database Wherever the small database infor mation is newer Trevance applies a set of SQL patches to the live database Thus the data in the historical database is not replaced Question 9 What files does Trevance automatically re move copy move rename or delete A 1 FREQUENTLY ASKED QUESTIONS 403 Depending on how your configure your real time and batch import Trevance either deletes the imported file or saves it and changes the extension to DNE immediately after the file is suc cessfully loaded into the Trevance data base On export files are written with a unique extension and then renamed to the proper extension EXP when all the data is written This process allows Trevance to communicate with some 4GL languages that can t specify exclusive read write access to files Those are the only cases when Trevance changes or deletes a file Question 10 Js there any way to directly access the under lying SQL database engine and tables No Trevance uses an embedded database that allows only single application access The activity log can be periodically ex ported and then loaded into Excel Access Oracle or other pro gram
258. on Defaults This section covers Paymentech specific details of batch file and realtime web configuration 16 0 12 Configure Import Defaults for Batch Files Refer to Configuring Imports for Batch Files on page 61 for general information about import configuration 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on BATCH FILES 4 Click on BATCHIMPORTS to view Select Model Batch Import File Look in Batchimport 10 E 5 E CreditCards txt My Recent Documents E Desktop My Documents My Computer AA File name A o Places Files of type Text files ba csv imp dne X Cancel 5 Select the sample CREDITCARDS TXT file or any file of your own that you re using for import configuration to view 207 ke Configure Import BATCH FILES Fields Field Reference Columns with Data from CreditCards txt Alternate Tax Amount Alternate Tax ID AMEX Trans Advice 1 AMEX Trans Advice 2 AMEX Trans Advice 3 AMEX Trans Advice 4 Auth MOP Authorization Source Code Authorized Time AVS Requested Import File Security Default Values After Import AVS Response Bill ddress Address 2 Delimiter Options BillAddress Apt BillAddress Country Tab I Fist Row Contains Field Names BilAddress E mail v Fields Include Quotes BillAddress Home Phone C BilAddress Middle Initial Coma Bill ddress Work Phone
259. on to Step 13 48 CHAPTER 3 CONFIGURING TREVANCE 13 By default a check mark does not appear next to Mask Sen sitive Data If you place a check mark next to Mask Sensitive Data part of the customer account information is hidden in export files for example in OK files It has no effect on the screen or on import files Masking obscures all but the last four characters of a credit card number so that 1000 0001 0001 appears as 0001 14 When you ve configured your export files the way you want them click on 3 5 Generate Server Passphrase and Batch File Encryption Key Trevance uses a passphrase as an encryption key to protect your data This security feature is not optional In addition you may encrypt batch export files by generating an encryption key for use by your external encryption decryption program This security feature is optional You must first generate the server passphrase Then you can generate or import an encryption key for use by your external encryption or decryption program You may also export the key 3 5 1 Generate Server Passphrase Before switching to either test or production mode you must en ter a passphrase for your server Trevance uses the passphrase as an encryption key to protect your data To simplify initial con figuration and testing Trevance uses a default encryption key in demo mode For added security the passphrase is broken into two segments Each segment may be
260. ons in Demo Mode Working with an Import File That Isn t Typical 4 Windows Service 4 1 Establishing a Log On Account for the Service 4 1 1 All Directories Local 4 1 2 At Least One Remote Directory 29 30 30 30 33 35 36 36 43 48 48 50 54 59 56 62 66 67 68 09 69 70 71 12 73 75 80 81 83 83 CONTENTS 111 4 1 3 After Establishing the Log On Account 85 4 2 Setting Up and Changing Remote Directories 85 4 2 1 Testing the Service 87 5 Testing and Activating Trevance 89 5 1 Testing Your Configuration in Demo Mode 89 5 1 1 Testing Your Batch Import and Export Configuration ooo a 89 5 1 2 Testing the Web Interface 93 5 2 Entering Your Serial Number and Activation Key 95 5 2 1 Switching from Demo Mode to Test Mode for the First Time 96 5 2 2 Switching between Modes 97 5 3 Testing Your Configuration in Test Mode 98 6 Understanding Trevance 101 6 1 What Does Trevance Do 101 6 1 1 Batch Transactions 102 6 2 Understanding Delimited Text Files 107 6 3 Understanding Trevance Terms 107 6 3 1 Done files dorar pus des ee 110 6 3 2 Export file and directory 110 6 4 Understanding the Trevance Screen 11d 7 Operation 119 7 1 Pausing Resuming Exiting Launching the Con s le iia 22 kea rr 119 7 1 1 Pausing or Resuming 11
261. ons to your processing service You can configure Trevance to either delete the original IMP file or save it with a DNE extension By default Trevance looks in the BATCHIMPORT directory for the delimited text files The import directories can be on a remote machine or file server 6 3 2 4 Log file Trevance keeps a record of its own operations each day in a log file a basic ASCII text file with the extension LOG which it stores in the LOG directory This file tracks such events as pause resume import and export A new file is created each day The Log screen shows the 200 most recent events This is not the same as the activity log 6 3 2 5 Real time Trevance processes real time transactions through the web inter face Each transaction is processed as soon as it is received 6 3 2 6 Recovery log The recovery log is generated when you process a debit card either PIN based or PINless It contains information about a debit card transaction that must be remembered between the transaction s authorization and its capture The recovery log is a backup of information stored in the Trevance internal database This copy is maintained for redundancy For protection you should keep the recovery log and Trevance on different hard drives and back up the recovery log nightly 6 3 2 7 Warning file As part of the batch import process Trevance checks for trans action records with formatting errors or missing require
262. ontinued from previous page Authorization Auth Reversal Deposit Sale Refund Biller Reference Biller Reference N A N A Tender Type Tender Type Tender Type Authorization Code Authorization Date PIN less debit is also known as debit bill payment and is only available to select industries including utilities insurance telecom munications cable financial and government entities Regula tions currently do not allow PIN less debit to be used for recurring or installment payments The PIN less debit is a single message transaction As soon as the transaction is authorized money is removed from the cus tomer s account Paymentech takes the debit authorization data and stores it in a Debit Database When you send a deposit trans action in the daily batch file Paymentech matches the deposit against the Debit Database When a match occurs money moves to your account If no match occurs Paymentech reports the ex ception to the merchant Debit authorization A and Sale S transactions must occur through the real time interface An exception to the above is that recurring Auth and Sale transactions may be submitted via batch This requires the Re curring flag to be passed with the transaction This functional ity allows PINless debit cards to be used for recurring payment purposes The very first transaction still must go through the real time interface Online Deposit and Sale transactions requ
263. opy is complete the IMP file is deleted and the new masked copy is given the DNE extension e Do not export the account code Instead use the order num ber field or an internal tracking ID in one of the four com ment fields e Never send sensitive customer information to Auric for sup port or any other reason 347 348 CHAPTER 1 MAGNETIC STRIPE AND CVV2 DATA e Sensitive authentication data should be collected only when needed to solve a specific problem e Any such sensitive data collected must be stored in a secure manner in specific known locations and with limited access e Collect only the limited amount of data required to solve a problem e Securely delete any such sensitive collected data immediately after use 1 2 Trevance 1 2 1 Securely Delete Files Trevance supports the ability to perform multi pass file over writes and deletion After a batch file is imported it is deleted in a secure manner by being overwritten multiple times before the actual deletion If this should cause excessive hard drive activity in your specific installation the second best approach is to use the One Pass Overwrite and Delete See section 3 8 2 Selecting a Secure File Deletion Method You must remove historic data such as old databases and database backups no longer being used using a secure removal tool such as SDelete for Windows Configure Options Security Tab Multi Pass Overwrite and Delete is checked Configu
264. orts PayPal transasctions through both the real time and batch interfaces Note that the Trevance CN 4250 pro vides support for real time transaction types not supported by Chase Paymentech such as Sale Capture and Refund by con verting the real time request into a queued batch transaction Auric appreciates your setting the ButtonSource parameter in your initial call to the PayPal website to AURIC_CNEXPRESS_ECUS PayPal transactions require integration with the PayPal web site To support PayPal transactions with Trevance you first send one of the Set transactions for example SA to Trevance Trevance makes a call to Chase Paymentech which returns a PayPal token on success Trevance returns this value in the PYTOKEN field Using this token you redirect the customer to the PayPal site When the customer has completed authentication PayPal sens the customer back to your site to the RTRNURL parameter you send with the initial Set At this opint you can use the token value to complete the transaction through Chase Paymentech us ing Trevance transactions All PayPal transactions must provide the following fields e AMT Amount e DIVISION e TENDTYPE Tender type Set to Y 237 e MRCHORDR Merchant Order Number e ACTION Action Code The following shows e Action an English language description of the transasction type e Trevance Action The ACTION sent to Trevance e Required Fields Fields required t
265. ot administered remotely via the Trevance Console The Trevance Console is for use within your corporate net work Never provide access from the Internet to the Remote Con sole Credit card information is not accessible via the Remote Con sole 11 3 CN Express All remote access to the CN Express server is via the CN Express Web Console CNIExpress supports HTTPS connections to the Web Con sole This console is for use within your corporate network Never provide access from the Internet to the Web Console Credit card information is not accessible via the Web Console TM 11 4 PAYMENTVAULT 389 11 4 Payment Vault PaymentVault does not provide a remote monitoring system 12 Encrypt Sensitive Traffic Over Public Networks 12 1 General e Trevance CN Express and Payment Vault are designed for installation on a private network not a public network As such sensitive traffic is not communicated over the public network e Trevance CN Express and Payment Vault have no fa cility for emailing credit card information e Never email sensitive credit card information in an unen crypted form e If you should transmit any cardholder data over the public Internet you must use secure encryption transmission tech nology for example IPSEC VPN SSH or SSL TLS 12 2 Trevance Trevance sends transactions to payment processor systems via secure VPN or leased line connec
266. ou should select an address that identifies the e mail as coming from Trevance say trevance example com Type the e mail Send Mail To address Trevance automati cally sends the message to this address Click on Use Authentication to enter the userid and password of your e mail server if your e mail system requires them Trevance then logs into the mail server using the account number and password you supply Click on _Send Tea Message to make sure e mail is being sent and received properly Click on the Scheduling tab to view E Mail Notification x Message Content Mail Server Scheduling Send Daily And All Log Reports At 24 HR 00 00 00 Daily Reports should be scheduled before Daily Maintenance as Archiving can affect the reports Cancel Change the time when you want to receive a Daily Report and or an All Logs report The default time is midnight 00 00 00 Daily reports should be scheduled before daily database main tenance that is before archiving occurs For information on scheduling database maintenance see Chapter 8 10 2 CONFIGURING AND SENDING E MAIL NOTIFICATIONS MESSAGES 15 Click on 167 11 ACE Auric Cipher Engine All versions of Trevance now support the Auric Cipher Engine ACE technology ACE is a standard interface from Trevance and CN Express to various third party data encryption decryption services ACE is also directly usable by any
267. ough your browser that confirms whether the web interface worked You should also see a message like the following on the Trevance Log screen Batch Real Time Monitor Real Time Chart Time Type CERRO 2 information Connection established to Authorization Host DEMO Web alum HTTP Server started listening on Port 8004 5 2 ENTERING YOUR SERIAL NUMBER AND ACTIVATION KEY 95 5 2 Entering Your Serial Number and Activation Key After you enter the serial number and activation key you can switch Trevance from demo mode to test or production and back again You should keep Trevance in demo mode until you ve tested your configuration and it works smoothly You should switch to production mode only after you finish testing your configuration Thereafter you can switch between all three modes whenever you like You must pause Trevance before you re allowed to enter the serial number and activation key Trevance remains paused after you switch modes until you tell it to resume Here are the differences between demo test and production mode Table 5 1 Demo Test Production Mode Differences If you configured your processor settings so that the proces sor tests transactions only you ll see TEST on your screen even though Trevance is in production mode Transactions sent to the processing service won t be processed until you change that setting Trevance remembers the configu
268. ow both informative pro cess as well as error messages These logs are stored as simple text files that are easily re viewed 4 3 CNIEXPRESS 373 Configure Directories E Batch Directories Import C Program Files Trevance B atchl mpor Export C Program Files Trevance BatchExpott Decline C xPragram Files Trevance BatchDecline o Warning C Program Files Trevance Waming Reports C Program Files Trevance BatchRepots e Other File C Program Files Trevance FilesFromProcessor s M System Directories Log C Program Files Trevance Log ttl Archive C Program Files TrevanceArchive o Backup C xPragram Files Trevance Backup sm Recovery Log C Program Files Trevance RecoveyLog sm Cancel Default The CN Express9 log directory contains a number of logs The three that you should forward to a centralized logging location are e audit_Y YY YMMDD log e console__user_Y YY YMMDD log e cnxap_YYYYMMDD log From the Advanced directory in the CN Express Configura tion utility e Ensure the Log Directory field is pointing to a valid disk location This is the directory that will contain all your log files The CN Express From the Configure E Mail Notification di alog 374CHAPTER 4 LOG PAYMENT APPLICATION ACTIVITY e check All Logs to have the daily logs automatically emailed to you e configure the settings for your SMTP mail server e select a time at which the log
269. pplication doesn t have to be running on the same computer as Trevance it may not even be a Windows application Any ap plication capable of creating a delimited text file can transactions to Trevance 6 3 0 6 Control files Control files allow external batch or scripting applications to con trol when and how Trevance is running For example you might configure Trevance to always start paused running but not pro cessing transactions Then when all external applications are fully operational they can send a control file to the Trevance BATCHIMPORT directory to tell Trevance to resume working ONNOW CN If Trevance is working and the external appli cation needs to pause it for system maintenance say it sends an OFFNOW CN file Trevance automatically deletes these files after they are processed 6 3 0 7 Directories For a list of Trevance s default directories and the types of files they contain see File directories and extensions below 110 CHAPTER 6 UNDERSTANDING TREVANCE 6 3 1 Done files As soon as Trevance finishes importing a file into its database see Import file and directory below it either deletes the file or saves it with an extension of DNE for done During configuration you decide whether Trevance creates a done file 6 3 2 Export file and directory The export directory for batch transactions is BATCHEXPORT Here Trevance stores files that it exports to your ex
270. processing fees also called interchange The TransFirst specifications describe over 100 possible fields that can be transmitted The specific fields you should send will depend on your market type your business class e commerce MOTO recurring IVR etc and the forms of payment you ac cept credit card purchase card etc Working with your Trans First representative is the quickest way to determine which fields you should send 20 Tsys Tsys was formerly known as First National Merchant Solutions This chapter contains information on configuring processor set tings specifically for First National Merchant Solutions FNMS Please refer to Part I Trevance Installation Configuration and Operation in this manual for generic Trevance information Trevance CN 3500 supports VPN and Frame connections to FNMS For additional documentation see the Auric Systems In ternational web site specifically e General Trevance Support If you don t configure processor settings correctly Trevance refuses to work in production mode it remains paused You may see a warning message on your screen http www AuricSystems com support center trevance Additional html reference documents are available in your local Trevance Doc directory You may also find Paymentech s 120 byte Batch Technical Spec ification and On Line Processing Technical Specification to be use ful Please contact your Paymentech representati
271. processing with Trevance for First Data Compass is simple and can be set up quickly Ask 298 CHAPTER 18 FIRST DATA COMPASS PLATFORM your First Data representative what is necessary for more compli cated transactions 18 3 3 Generally Useful Fields The following fields are generally useful for most types of transac tions Refer to the on line field reference list for additional infor mation e COMMENT 1 through 4 Four 128 character general purpose fields Not sent to First Data Use these for your own track ing purposes e CURRENCY Usually set as a default at the division level and not imported e CUSTOMER IP ADDRESS Useful for tracking and fraud pur poses when processing e commerce transactions e LAST ACTION SUCCEEDED Returns Y whenever a requested transaction was successful Otherwise it returns N A useful first check to see if a transaction request was approved e RESPONSE CODE First Data s three digit response code e SOFT DESCRIPTOR 1 and 2 Provides information on the cardholder s monthly statement This must be set up at First Data before you can use it In addition to the fields described above you should also send the account holder s full name FIRST NAME and LAST NAME fields as well as the address city state and ZIP or postal code whenever available This helps reduce your interchange rate processing fee If you do not have a full address at least obtain and send a ZIP c
272. quire a copy of dosdev http sourceforge net projects vscsc files utilities dosdev zip download 3 Find the vsre cmd file in the Trevance repair directory 4 Call vsre cmd like this vsrc cmdC AuricSystems TrevanceServer pathtobackupfiles 14 4 Repair It is rare to run into a corrupt Firebird embedded database The specific areas where we ve seen this occur with any of the payment applications is when a server runs out of disk space You should always monitor your disk space on a regular basis and ensure your logs and backup files are being properly maintained If you should end up with a corrupt database there s several steps that you can take to recover The necessary tools are pro vided as part of the general Trevance installation 14 5 Windows All recovery work is done from the command line The Trevance installation includes a repair directory that by default installs at c AuricSystems TrevanceData repair 1 If you are running the default embedded database shut down Trevance and make a copy of the database prod fdb Call it prod orig fdb Copy the prod orig fdb file to the repair directory 2 From the command line run the following command gfix v f user userid password passwd prod orig fdb You should see errors reported Note Contact Auric Systems International tech support for userid password 3 Run the following command to prepare the database for re covery 184 CHAPTER 14 DATAB
273. r Chase Payme DAR Server is PAUSED Fie Server KenL Reports Help Set Password Users Reports E Mail Notification 11 21 2011 Warnings 11 21 2011 Scheduled Database Maintenance 11 21 2011 Resume Server when Configuration Complete Log Ba Processor Settings Batch Files Directories Set Console Port Database Server Options mmunication layer ication Started in DEMO Mode at Set Serial Number and Activation Key Key Manager Set Run Mode Currently DEMO Run Demo s Currently CN 3500 Server Paused 187 188 CHAPTER 15 AKMP 2 Click AKMP has been configured on the Trevance server External Key Manager Trevance requires connection to AKMP to provide highly secure encryption for protected data You must configure AKMP and then check the box below in order to run in test or production modes AKMP has been configured on the Trevance server AKMP Pott fi 021 3 Click OK External Key Manager Trevance requires connection to AKMP to provide highly secure encryption for protected data You must configure AKMP and then check the box below in order to run in test or production modes AKMP Port 10211 Corcel 4 Your External Key Manager is now active Part III Payment Processors 189 16 Chase Paymentech Solutions Direct Salem This chapter contains information on configuring processor set tings specifically
274. ration you set up in the demo mode and uses it in the test production mode Demo Test Production Transactions are sent to processing service No Yes Yes Transactions are really processed money is ex No No Yes changed Message appears on the screen DEMO TEST Production 96CHAPTER 5 TESTING AND ACTIVATING TREVANCE 5 2 1 Switching from Demo Mode to Test Mode for the First Time 1 Click on Configure 2 If necessary click on Pause Server to Configure Items Below You must pause Trevance before you re allowed to enter the serial number and activation key 3 Click on Serial Number and Activation Key to view Enter Serial Number and Activation Key EJ SerialNumber 3 Activation Key fo T 4 Lox c Fill in your serial number and your activation key After you bought Trevance Auric Systems International e mailed these numbers to you 4 Click on 5 Click on Configure 6 Click on Set Run Mode to view Set Run Mode E Demo Mode Transactions not sent to Payment Processor but handled locally by Trevance demo server C Test Mode Transactions sent to Payment Processor in Test LLAI Mode Use for final test and configuration before going into production Production Mode Live transactions submitted to Payment Processor C Production 5 2 ENTERING YOUR SERIAL NUMBER AND ACTIVATION KEY 97 T 8 10 11 12 Click on the radio button for the test
275. rd debit card or bank account number e ACTION Authorization sale deposit refund Set to default or import with each transaction AMOUNT MERCHANT NUMBER Set to default or import with each trans action e MERCHANT ORDER NUMBER Every transaction requires a mer chant order number This value is used for tracking trans actions through Trevance and the Card Associations Merchants should provide a MERCHANT ORDER NUMBER with each transaction Trevance generates an order number if one is not provided If you re performing two pass authoriza tion transactions that are followed by deposits you must use the same order number for the deposit and for the autho rization A unique order number for each transaction helps reporting and reconciliation but is not mandatory for Trans First e TENDER TYPE Credit card purchase card check etc For some transactions those using credit cards there s no need to import the tender type It is a good practice to always import the tender type so you are prepared for new future payment methods that may require the field The following tables indicate when it s necessary to import the tender type The following tables show the minimum additional informa tion that you must send for each method of payment not the in 19 2 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS 325 formation that results in your best interchange rate processing fee These tables assume you re sendin
276. re Batch Files Imports Dialog CVV CID field is not imported After Import Tab Delete File 1 2 TREVANCE 349 e Encryption Tab Import Files are Encrypted is checked Export Files are Encrypted optional better to not ex port sensitive data 1 2 2 Proper Log Handling Run those logs appropriate for the environment Ensure log mask ing is active Note Trevance and CN Express can only mask informa tion appearing in the proper field If a credit card or CVV2 value should be placed in the wrong field the software has no way to know it should be masked e From the Configure Options Troubleshooting Tab Turn off all Additional Logs that you are not explicitly using If you do turn on any Additional Logs check the Mask Identifying Information in Log Files checkbox This causes the sensitive data such as account numbers and CVV2 CID values to be masked in the output streams 1 23 Do Not Store CVV2 Field CVV2 data should never be transmitted in batch files e From the Configure Batch Files Imports dialog check the following CVV CID field is not imported e Configure BatchFiles Exports dialog Account field is not exported or exported masked 350 CHAPTER 1 MAGNETIC STRIPE AND CVV2 DATA 1 3 CN Express 1 3 1 Securely Delete Files CN Express supports the ability to perform multi pass file over writes and deletion After a batch file is imported it is deleted in a secure
277. red Fields Default Copy From 1 In the Other box type an ampersand 4 82 CHAPTER 3 CONFIGURING TREVANCE 2 Click on the radio button next to Other and you ll see the proper column layout Trevance assigns column headings according to the default field order which might not match the order of the file 3 Change field names replace unassigned column headings with field names and make any other changes necessary 4 When the file is correctly formatted for your processing ser OK vice click on ox Windows Service Trevance runs as either a stand alone application or as a Win dows service During configuration and testing you should run Trevance as an application Afterwards you can run Trevance as a service with one of the following configurations e Local Both Trevance and its directories are on the same computer e Remote Trevance is on one computer and at least one of its directories is on another remote computer e Trevance automatically installs as an NT service but the service is not activated To activate the service 1 Establish a log on account for the service if necessary 2 Set up folders 3 Set the service up to run as a specific user 4 Test the service This chapter also describes the recommended NTFS file secu rity configuration how to uninstall the service and how to run Trevance as an application again When you run Trevance as a service you wi
278. reference list for additional infor mation e COMMENT 1 through 4 Four 128 character general purpose fields Not sent to Paymentech Use these for your own tracking purposes e CUSTOMER IP ADDRESS Useful for tracking and fraud pur poses when processing e commerce transactions e LAST ACTION SUCCEEDED Returns Y whenever a requested transaction was successful Otherwise it returns N A useful first check to see if a transaction request was approved e RESPONSE CODE Paymentech s two digit response code Note these are different response codes than returned by the Pay mentech Direct Salem platform Additionally obtain and transmit the card security code CVV2 CID information with Conditional Deposit Sale transactions 17 2 4 Required PNS Configuration Settings When connecting to PNS with Trevance be sure to tell your Chase Paymentech representative that your account configuration requires CHAPTER 17 CHASE PAYMENTECH SOLUTIONS 280 PNS TAMPA e Host mode processing e Support for ten simultaneous transactions over single socket e Auto batch close on PNS side These PNS settings are required for Trevance to operate properly 17 2 5 Timeouts and Duplicate Detection If a timeout occurs Trevance returns an ASIRESP code of 500 and a non blank value in the RETRYKEY field If you decide to resubmit this transaction you need to send the RETRYKEY field back to Trevance 18 First Data Compass Pl
279. ress ZIP Postal Code Vv AVS Requested m Authorization Code Mi Vv Delimiter General Security a Export Field Names in Fist Record Include Quotes Around Each Field Comma F Split Approvals from Decknes C Other MW TF Export Level 3 Detal Records Default Copy From E Cancel 5 There are two main boxes on the Configure Export screen Avail able Fields and Fields to Export Initially Fields to Export displays the default set of export fields You may want to export ad ditional fields For example if you add the Response Text field you ll be able to see why the processing service declined a transaction That information may tell you how to fix your import configuration to reduce the number of declines 3 4 CONFIGURING EXPORTS FOR BATCH FILES 45 For information about individual fields click on Fe Reference 6 To move a field from one box to the other select the field by clicking on the field name Then either drag and drop the fields to the list or use the arrow keys e Suppose you drag Activity Date to the Fields to Export list It will be placed above the item you drag it to The fields in the Fields to Export box should be listed in order of appearance in the record for each transaction e If you decide to drag Activity Date back to the Available Fields list it will automatically be placed in alphabetical order regardless of where you drop it e To use the arrow keys Table
280. revance as an application These procedures are described next 1 Ze Run Trevance As a Service You ve just installed or re installed Trevance as a service and now want to run it as a service Browse to the Windows services control panel and double click on Trevance Browse to the Windows control panel Click on Administrative Tools then double click on Services 4 2 SETTING UP AND CHANGING REMOTE DIRECTORIES 87 6 Double click on Trevance to view a screen like the following 7 Set the Startup Type to Automatic 8 Click on the Log On tab to view a screen like the following At This Account type in the specific account and password under which Trevance will run Do not run it under the Local System Account If you do Trevance will never find the neces sary passphrase which is stored in the user account 1 Click on 2 Restart Trevance 3 Run Trevance as an application 4 Suppose you ve been running Trevance as a service and now want to run it as an application Browse to the Windows control panel Click on Administrative Tools then double click on Services Double click on Trevance to view a screen like the following At Service Status click on the Stop button O DNDN Set the Startup Type to Manual 10 Click on 11 Restart Trevance 4 2 1 Testing the Service Before you test the service you must start the Trevance Console and connect to the service e To te
281. revance9 shut down the server and restart 3 11 Working with an Import File That Isn t Typical So far this chapter has assumed that your imported text file uses a tab for a delimiter and places quotation marks around each field But what if it doesn t Here s part of a delimited text file that uses an ampersand for a delimiter and omits the quotes C amp 6011 9796 8607 3072 amp 11 08 amp 258 98 amp Linda amp Smith amp When you open this file in the Configure Import screen it looks like this Configure Import Bat ris Fields Field Reference Columns with Data from sample txt A Account Alternate Tax Amount Alternate Tax ID C amp 6011 9795 9607 3072611 088 258 98 LindatSmith 433 Butterworth Ln AMEX Trans Advice 1 4 5191 4090 3756 01 00811 098 87 038H arry ones amp 345 Scotts Valley Rot AMEX Trans Advice 2 C amp 5191 4090 3756 01 00412 098104 48 Cari8Brovmt1009 Third Avek AMEX Trans Advice 3 AMEX Trans Advice 4 86011 9247 5752 2219 09 09 78 5088 eth amp Han amp 6783 Topper Ln Amount Auth MOP Authorization Code Import File Security Default Values After Import Authorization Source Code Authorized Date Delimiter Options Authorized Time AVS Requested G T F First Row Contains Field Names AVS Response I Fields Include Quotes BillAddress Address 1 C BillAddress Address 2 Comme BillAddress Apt BillAddress City Other BillAddress Country BillAddress Email Iv Requi
282. reverting to HTTP Error was OpenSSL DLLs not installed in Trevance Server direc tory Expanded Information Trevance did not successfully start up an HTTPS connection Suggested Action Review for proper HTTPS configuration and Certificates Trevance Administrative Console gt Configure gt Real Time Interface gt HTTPS Configuration Message Late Authorization Response received for item s authorization already reported failed with No Response Full Response was s Expanded Information Trevance received the response to a Real Time transaction gt 40 seconds from the time the request was sent The transaction was already reported failed with no re sponse This message can be used to help determine whether or not the authorization succeeded Suggested Action determine whether or not the authorization succeeded Message Socket Log Error Unrecognized format code s Expanded Information Trevance received an unrecognized for mat code in the processor response so does not know the length of the corresponding segment Therefore the socket log may be inaccurate D 4 EVENTS 423 Suggested Action Contact Auric Technical support SupportQ AuricSystems com Or Call 603 924 6079 Provide Auric support with the text of the error message Message Terminating Thread d Expanded Information May occur during pause or shutdown if an individual thread was unresponsive and needed to be terminated Suggested Action None Message
283. revious page Account Check Partial Auth Force Full Auth Transactions that contain the minimum information plus an expiration date are automatically identified as credit card trans actions Sending a C in the TENDER TYPE field explicitly identi fies credit card transactions Credit card account values can contain spaces or dashes First Data recommends returning the original RESPONSE CODE which will typically be 100 with all deposit transactions Authorization Reversals require the Authorized Amount to be included in the reversal Action Code for Auth Reversals is L In the Amount AMT field send the amount that was originally authorized Authorization Reversals are supported for Visa MasterCard and MC Diners Partical Authorization is supported for American Express Mas terCard and Visa You account must be set up to support this transaction Action code for Partial Authorization is PA 6 In a Partial Authorization the credit card is authorized for the maximum available credit up to and including the requested amount If you attempt to authorize 100 00 and the card has only 75 available the Partial Authorization will succeed but only for the 75 00 If you use Partial Authorization or if you have a division configured to default to Partial Authorization you must track the Total Authorized Amount AUTHAMT response field from Trevance This field returns the actual amount that was aut
284. revious page Action Required Fields Online Batch FA Full Authorization TENDTYPE TRACK2 PIN KSN CNACTION AMT XCLASS S C Sale TENDTYPE TRACK2 PIN KSN CNACTION AMT XCLASS CN 4250 Y RA Refund Authorization ACCT TENDTYPE TRACK2 PIN KSN CNACTION AMT XCLASS D Deposit ACCT TENDTYPE AUTHCODE MERCHORDR AMT CN 4250 Y Continued on next page 16 1 Table 16 23 Continued from previous page GIFT CARDS 249 Action Required Fields Online Batch R Refund ACCT TENDTYPE AUTHCODE MERCHORDR AMT CN 4250 L Auth Reversal ACCT TENDTYPE AUTHCODE MERCHORDR AMT RL Refund Auth Reversal ACCT TENDTYPE AUTHCODE MERCHORDR AMT 16 1 Gift Cards Trevance supports Chase Paymentech gift cards All gift card functionality is available in real time in both the Trevance CN 4200 and the CN 4250 and in batch in the CN 3500 CN 4200 and CN 4250 Chase Paymentech supports all gift card actions in both real time and through batch In real time all transac tions are passed directly through to Chase Paymentech unlike credit cards which have only real time authorization support on the Chase Paymentech Salem platform Trevance always sends Gift Card transactions marked as Re tail RE Gift cards currently support only US Dollars CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 250 DIRECT SALEM 16 1
285. rican Express Mas terCard and Visa You account must be set up to support this 217 transaction Action code for Partial Authorization is PA In a Par tial Authorization the credit card is authorized for the maximum available credit up to and including the requested amount If you attempt to authorize 100 00 and the card has only 75 available the Partial Authorization will succeed but only for the 75 00 If you use Partial Authorization or if you have a division configured to default to Partial Authorization you must track the Total Authorized Amount AUTHAMT response field from Trevance This field returns the actual amount that was autho rized There is a new ASIRESP code of 105 indicating a Partial Authorization occurred When performing a deposit refund or auth reversal you need to use the value returned in AUTHAMT Note that if you have a division configured to default to Partial Authorization the Sales transactions sent through the real time interface will default to Partial Auth but sales transactions sent through the batch interface will default to Full Auth The reason is that Chase Paymentech does not support Par tial Auth for Sales Conditional Deposit transactions And Pay mentech only supports Auths through the real time interface How ever when using the Trevance CN 4250 Trevance first Autho rizes the transaction through the real time interface which sup ports Partial Auth and if successful
286. right but Trevance ignores the file because its real hidden extension is FFF not IMP To show and check the extensions on your files 1 Right click on mastar 2 Click on Explore 3 Click on the C drive 4 On the Tools menu click on Folder Options to view a screen like the following 3 1 PREPARING FOR CONFIGURATION 27 General View File Types r Tasks z O O Use Windows classic folders r Browse folders Open each folder in the same window Open each folder in its own window r Click items as follows iN O Single click to open an item point to select Underline icon titles consistent with my browser Underline icon titles only when point at them Double click to open an item single click to select Restore Defaults Apply 5 Click on the View tab to view 28 CHAPTER 3 CONFIGURING TREVANCE Folder Options x General View File Types Folder views You can apply the view such as Details or Tiles that ce you are using for this folder to all folders Apply to All Folders Reset All Folders Advanced settings Files and Folders a Automatically search for network folders and printers p Display file size information in folder tips Display simple folder view in Explorer s Folders list 3 C Display the contents of system folders Display the full path in the address bar C Display the full path in the title bar C Do not cache
287. rogram Files Trevance RecoveyLog sm Cancel Default From the Configure Directories dialog e Ensure the Log field is pointing to a valid disk location This is the directory that will contain all your logs The Trevance log directory contains a number of logs The three that you should forward to a centralized logging location are e audit YYY YMMDD log e console_user_YYYYMMDD log e Trevance_YYYYMMDD log From the Configure E Mail Notification dialog e check All Logs to have the daily logs automatically emailed to you 3720HAPTER 4 LOG PAYMENT APPLICATION ACTIVITY e configure the settings for your SMTP mail server e select a time at which the logs should be emailed to you e check Login Report to receive an email whenever anyone logs into Trevance 4 3 CN Express The audit log provides a list of activities performed by the Man ager using the web administrative interface Console users can only Monitor CN Express activity This log contains both the users log in name and a date time stamp at which the activity occurred The console user log maintains a running log of Manager and Console users who connect to CN Express via the web adminis trative interface This log should be regularly monitored for failed log in attempts The cnxap log file shows general application activity This log contains a date time stamp along with the specific action occur ring within CN Express Log entries sh
288. rt number 7 To use HTTPS rather than HTTP you must first install SSL DLLs and obtain a server certificate For further informa tion click on the HTTPS Configuration box 8 Click on 3 6 2 Formatting the Web Request Transactions are sent to the Trevance web interface in a simple tagged format You don t have to configure this format since any field can be sent in any order in the request However you must specify 3 6 CONFIGURING THE REAL TIME WEB INTERFACE 57 e The character you intend to use as a delimiter the default is an ampersand amp e The character you intend to use as a field value separator the default is an equal sign The Web Request Format screen lets you specify those characters and also build sample text strings showing a selection of fields format ted with those characters The text string shown in the Preview is a guide and example only you can send any valid fields your process requires as long as they are properly formatted with the correct delimiters The fields don t have to show up in the Preview 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Real Time Web Interface then the Web Request Format tab to view o Web Interface Settings The Web Interface accepts real time transactions through an HTTP Interface V Enable Web Interface General Web Request Format Web Response Format Transactions are a
289. s e When making Auric Systems International Technical Sup port aware of a situation that cannot be resolved by the merchants internal IT staff please provide Trevance Logs found in the Trevance Log Directory Each section below has suggested Trevance logs which may assist in expedited resolutions e Auric Support email Support AuricSystems com or call Auric Systems International support at 603 924 6079 e Many of the errors listed below will never be encountered during normal operations e Socket errors are reported only once per connection incident e A maximum of 20 batch generation errors are reported per batch e Exceptions may generate additional messages that include the exception text e Additional messages may be logged during server configura tion e In the Events section messages below s is a placeholder for an additional string that is usually further details on the type of error and d is a placeholder for a number 411 412 APPENDIX D ERROR AND EVENT MESSAGES D 2 Trevance Logs These Trevance logs may be useful for evaluating errors Trevance log files never contain sensitive cardholder information the trans actions have been sanitized However they may still contain sen sitive personal information such as addresses phone numbers and emails A new log file is created each day The actual name of the log file will contain the date as well as the base name e g tre vance_20110914
290. s found in the Trevance CN Express or PaymentVault sys tem you will be so informed via a security alert and a timely correction will be provided 379 Facilitate Secure Network Implementation 8 1 General Figure 8 1 shows Trevance CN Express and Payment Vault implemented in a secure network configuration Connecting Trevance CN Express and PaymentVault to a Merchant Network Payment Processor Real time Y Auths Web Server Client Web Browser accepting Secure Transactions Optional PaymentVault Activate Built in D Trevance or Firewall co CO CN Express on Windows XP 2003 Server Wireless j ilt i Activate Built in Basestation Firewall Receiver _ Merchant s Call Center Software Key Server May be internal or external Figure 8 1 Network Installation e Operate Trevance CN Express and Payment Vault on their own separate servers 381 382 CHAPTER 8 FACILITATE SECURE NETWORK IMPLEMENTATION Isolate the Trevance CN Express and PaymentVault servers from the public Internet Maintain your web server in a DMZ as shown in the diagram Do not run Trevance CN Express and PaymentVault in the DMZ where the Web Server or Wireless Application Server are shown in the diagram If your application must use wireless provide wireless access through a separate firewall and isolate the application server Cardholder Data Mu
291. s if required so that it can supply the information to the processor during capture deposit There was an error storing that qualification information to the database Suggested Action Contact Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the Trevance Logs suggested below Message Error updating summary information for transac tion s Error was s Please contact Auric Systems technical support Expanded Information There was an error updating the trans action information displayed in Trevance Console Suggested Action Contact Auric Technical support Support AuricSystems com Or Call 603 924 6079 Provide Auric support the Trevance Logs suggested below Message Error parsing returned transaction s Expanded Information The response returned from the pay ment processor was not in the expected format Trevance may have encountered invalid characters that prevent it from correctly parsing the transaction information Suggested Action Review the Web and Socket logs for invalid 422 APPENDIX D ERROR AND EVENT MESSAGES characters Message HTTPS server startup failed reverting to HTTP Expanded Information Trevance did not successfully start up an HTTPS connection Suggested Action Review for proper HTTPS configuration and Certificates Trevance Administrative Console gt Configure gt Real Time Interface gt HTTPS Configuration Message HTTPS server startup failed
292. s if you 196 17 18 19 20 21 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS DIRECT SALEM have an 8 digit number add two zeroes to the left hand side for example change 12345678 to 0012345678 The ALIAS field is provided for future functionality Leave it blank for now Under Default Currency click on to view a list of curren cies Click on the currency you want Trevance automatically uses that currency for all transactions associated with that particular division ID If you leave the field blank U S dollars are used by default Enter a DESCRIPTION This description is for your own use in identifying the submitter The description is never sent to Paymentech 16 0 4 Server Click on the SERVER INFO tab to view E Chase Paymentech 22 23 24 25 197 The server information is used to configure communications with Paymentech The real time and batch systems each have their own con figuration Although most installations perform both real time and batch operations you can disable either one if you like For exam ple if you already have a batch operation process in place you can use Trevance to add real time operations while continuing to perform your existing batch actions Fill in the REAL TIME SOCKET boxes based on information you receive from Paymentech The IP fields are in the form of dotted notation for example 192 1 1 42 The real time i
293. s for further reporting and analysis B Troubleshooting Trevance If you need to contact Auric Systems International please e Copy down any error messages you received and keep notes on what happened before and after the trouble started e Generate copy and print your latest configuration report click on Help then Configuration Report e Have your serial number handy When you purchased Trevance over the Internet the serial number and activation key were e mailed to you You can also find them under the Help menu as explained below This information will help us solve your problem quickly To contact technical support for Trevance Phone 603 924 6079 E mail support AuricSystems com Web Site http www AuricSystems com You can find your serial number and activation key under the Help menu 1 Click on Help 2 Click on About 3 Scroll down to Serial Number and then Activation Key 405 406 APPENDIX B TROUBLESHOOTING TREVANCE 4 Write down the numbers 5 Click on to leave the Help menu Your problem might involve the external application or your processing service Contact your processing service directly Secure File Deletion C 1 General Trevance and CN Express support secure file deletion meth ods Normally files deleted using the standard services provided by the operating system do not erase the actual data in the file Files deleted this way can be easily reco
294. s should be emailed to you e check Login Report to receive an email whenever anyone logs into CN Express 4 4 Payment Vault These PaymentVault logs logs may be useful for evaluating Payment Vault Payment Vault never contains sensitive cardholder informa tion the transactions have been sanitized e A new log is created each day The actual name of the log will contain the date as well as the base name e g PV 20110914 log e PaymentVault Log Contains the general activity of the Payment Vault application service e Audit Log Lists external access to the Payment Vault Server Develop Secure Payment Applications 5 1 General This section of the PA DSS standard is heavily focused on the de velopment of secure web public Internet accessible applications Although Trevance CN Express and Payment Vault have web interfaces it is not a web application and is not designed to be implemented directly on the public Internet Trevance CNIExpress and PaymentVault are designed for use only on internal networks See Section 8 below for recommendations on secure network implementation Where applicable Auric Systems International follows the Open Web Application Security Project OWASP guidelines available at http www owasp org Auric Systems International recom mends anyone integrating payment processing into their web site also follow the OWASP guidelines 375 Protect Wireless Transmiss
295. s that depend on your processing service and on how you configured your processor settings To view the monitor click on the Real Time Monitor tab Log Batch Real Time Monitor Real Time Chart Real Time Transactions Updated Every 10 Secs DEMO Japanese Yen DEMO Pounds DEMO North Carolina The columns on the Real Time Monitor screen give you the fol lowing information 134 CHAPTER 7 OPERATION Table 7 4 Real Time Monitor Column Information from the day you choose until today SID Submitter ID Division Division ID or description depending on how you configured processor settings Cur Currency the default currency is U S dollars Auths The total number Total Count and value Amt of authorizations Declines or The total number Total Count and value Amt of the indicated Captures or transactions Refunds The default currency is U S dollars The previous screen shows transactions that were processed in multiple currencies for example Japanese yen and British pounds and from a division in North Carolina In the SID Di vision and Cur currency columns Trevance places the informa tion provided when you configured processor settings see Part II Your Processing Service starting on page 193 7 7 2 Viewing the Real Time Chart The Real Time Chart shows the same transaction information as the monitor but in the form of a bar graph To view the chart
296. s the MP file or renames it with a DNE extension Trevance formats all transactions and sends them to the processing service The processing service processes all transactions Trevance receives and Trevance exports the results decodes the response and to the BATCHEXPORT updates its records BATCHDECLINE directories You configure Trevance to do one of the following a The extemal application reads export all transactions approved and declined in a the export file s single text file EXP or b direct approved transactions into an OK file and direct declined transactions into a BAD file then export both files 6 1 1 1 Real Time Web Interface Transactions Trevance has a built in web server for accepting real time autho rization transactions Any external application a web site shop 6 1 WHAT DOES TREVANCE DO 105 ping cart an order entry program a telemarketing IVR system can talk to Trevance if it can create a standard HTTP POST web request Your application can be written in any language PHP Python Perl Java ASP NET and so on Even though Trevance uses a web interface your application doesn t have to be web based Almost all computer languages to day from Visual BASIC to Java know how to talk with web sites This means that your phone system your accounting system your Oracle database just about anything can talk to Trevance s web interface The following flow chart describes
297. screen like the following Auric Systems International Trevance Console Recent Batches DEMO 4 3 2004 1 35 43 PM Import Path Date Time C Program Files Trevance BatchImport Batch001 imp 4 3 2004 12 43 10 I C Program Files Trevance BatchImport Batch002 imp 4 3 2004 12 43 11 1 C Program Files Trevance BatchImport Batch003 imp 4 3 2004 1 26 11 PI C Program Files Trevance BatchImport Batch004 imp 4 3 2004 1 26 13 Pl s Page Range Om Number copies 1 9 O Pager 1 lair T 7 Enter ether a singe page number or a single ope JE page range For example 5 12 Click on 10 1 CONFIGURING PRINTING AND SAVING REPORT6L 10 1 3 Saving Reports Any report can be saved in HTML format 1 Click on Reports 2 Click on Print This Page to view a sample report If you re viewing the Batch screen Trevance asks if you want a re port on the Submittal Queue or on Recent Batches You ll view a screen like the following Auric Systems International Trevance Console Recent Batches DEMO 4 3 2004 1 35 43 PM Import Path Date Time C Program Files Trevance BatchImport Batch001 imp 4 3 2004 12 43 10 I C Program Files Trevance BatchImport Batch002 imp 4 3 2004 12 43 11 I C Program Files Trevance BatchImport Batch003 imp 4 3 2004 1 26 11 PI C Program Files Trevance BatchImport Batch004 imp 4 3 2004 1 26 13 PI y gt Print Save As Close
298. se Manually 143 8 5 Deleting Old Files 22 eee bd ea eRe eS 144 8 6 Sweeping the Database Manually 145 8 7 Verify Repair 6 a8 ee a 145 8 8 Archiving e ba AA AAA RAR 146 9 PaymentVault 149 9 1 PaymentVault Server 149 9 2 UTID Stor ge sea pee e os es eo 150 9 3 Configuring PaymentVault 151 9 4 Returning UTIDs from Trevance 153 9 5 Batch Tokenize Only 154 9 6 Real Time Use of Tokenization 156 9 7 Real Time UTID Updates 157 10 Reports and Emails 159 CONTENTS v 10 1 Configuring Printing and Saving Reports 159 10 1 1 Configuring Reports 159 10 1 2 Printing Reports ida eo ee are a 160 10 1 3 Saving Reports 2 22s se eee es 161 10 2 Configuring and Sending E Mail Notifications Mes BAES SII 162 11 ACE Auric Cipher Engine 169 11 1 Configuring Trevance for ACE 169 11 2 Using Encrypted Account Values 170 11 3 ACE Related Trevance Error Messages 171 11 3 1 Online Encryption Failure rd 11 3 2 Online Decryption Failure 172 11 3 3 Batch Encryption Failure 172 11 3 4 Batch Decryption Failure T73 12 4250 Features 175 12 0 5 Real Time Conditional Deposit Emulation 175 12 0 6 Settling Stored Transasctions 176 12 0 7 ValueLink and Disney Rewards Cards 178 13 Monitoring 179 14 Database Management 181 14 1 este 242 et e8hea0 48 6834848 de 181
299. se Server to Configure Items Below 3 Click on Options 4 Click on the Security tab to view 72 CHAPTER 3 CONFIGURING TREVANCE Options General Security Real Time File Extensions PaymentVault Troubleshooting File Deletion Method Select a deletion method for imported fles and temporary files used by Trevance Mult Pass Overwrite and Delete is the most secure and the recommended setting MultiPass Overwrite and Delete C One Pass Overwrite and Delete C Quick Delete External Encryption ACE ACE URL http 7 127 0 0 1 8766 5 Select one of the options The default is Multi Pass Overwrite and Delete it is also the most secure option 6 See ACE chapter for details on the ACE URL setting 7 Odeon 3 8 3 Changing File Extensions You may change the file extensions that Trevance uses for im port export split approved and declined warning done and error files 1 Click on Configure 2 If necessary click on Pause Server to Configure Items Below 3 Click on Options 4 Click on the File Extensions tab to view 3 8 CONFIGURING OPTIONS 73 o ptions o General Security Real Time File Extensions Troubleshooting Import File Extension IMP Export File Extension EXP Split File Approval Extension Split File Decline Extension Warning File Extension Rename Successful Import Extension Rename Error Import Extension Archive Extension Default Cancel
300. se keys and re 362CHAPTER 2 PROTECT STORED CARDHOLDER DATA encrypts them using a key delivered by the key manager This takes passphrase encryption out of the process but saves the keys that may be required to decrypt existing data At startup CN Express 5 0 1 Checks to see if a legacy key was set 2 If it has been set checks to see if it was in the old passphrase or new key manager format 3 If it is in old format CN Express requires that a key man ager be configured or startup cannot continue a key man ager is not required for demo mode so it is possible that CN Express would be in this state if upgrading from demo mode 4 Attempts to decrypt the old format keys using the passphrase 5 Requests a current key from the key manager 6 Uses the key manager key to encrypt the legacy key Data that has been encrypted by a key manager key is tagged with the key version so these are easily differentiated from data en crypted by legacy keys which are not tagged When CN Express reads an encrypted but untagged data item the appropriate legacy key is used for decryption The configuration utility for CN Express also makes a con nection to the external key manager The configuration util ity retains the ability to read Windows encrypted or passphrase encrypted configuration files but it always writes new configura tions using managed keys 2 4 Payment Vault Payment Vault
301. sponse Format Preview 4111 1111 1111 1111 0905 411234 00 03458 Comment 1 Comment 2112345678904BCDEFI1 234561 m Field Reference Available Fields Fields in Response date JA I Account ACCT AL Expiration Date EXP Alternate Tax ID ALTTXID Action ACTION AMEX Trans Advice 1 14 41 Amount AMT AMEX Trans Advice 2 TAA2 BillAddress ZIP Postal Code BILLZCPI AMEX Trans Advice 3 TAA3 Comment 1 CMT1 AMEX Trans Advice 4 TAA4 Comment 2 CMT 2 Vv Auth MOP AUTHMOP x Merchant Order Number MACHORDR Antharisatian Garna Pade ALITHCAC Authorisatian Cade ALITHCANE Y DA Dptions ini E F Include Field Names Field Value Separator F Value is Quoted V Unmasked Account Numbers Default Cancel 4 There are two main boxes on the Web Response Format screen Available Fields and Fields in Response The default fields for ex port are shown in the Fields in Response box For example the Last Action Succeeded field let s you see at a glance if the trans action succeeded 1 or failed 0 You may want to change or add to these fields 5 To move a field from one box to the other select the field by clicking on the field name Then Table 3 8 Moving from Boxes Click on To Move the selected field into the Fields in Response box Continued on next page 64 CHAPTER 3 CONFIGURING TREVANCE Table 3 8 Continued from previous page Click on To
302. sponses Trevance gives you the results that you want to see It s that simple Start by processing credit cards then move on to electronic checks by adding one or two fields You don t need to understand an entire new subsection of your processing service s specifications Trevance does that for you Trevance contains all the tools required for communicating with your processing service they re already built in This chapter explains how Trevance handles transactions It defines important terms used throughout this manual and de scribes the main Trevance screen In the next chapter you ll use this information to set up Trevance so that it receives formats and sends transactions in the way you want 6 1 What Does Trevance Do Trevance moves transactions from your system to your process ing service and back again These transactions can move either through the high volume batch interface or through the high speed real time interface currently authorization only The high volume batch interface uses simple tab or comma delimited text files For batch files Trevance requires an external application that can store transactions in a delimited text file The high speed real time interface uses standard web protocols 101 102 CHAPTER 6 UNDERSTANDING TREVANCE 6 1 1 Batch Transactions Trevance accepts batches of transactions from your external ap plication submits the transactions to your pro
303. ssary repairs Because Trevance always attempts to recover automatically at startup you should verify repair only if asked to do so by your technical support or by Auric Systems International 146 CHAPTER 8 MAINTENANCE 1 Click on Server 2 Click on Pause Click on File 3 Click on Verify Repair Database to view Trevance Console i y This will check the database for consistency and make any repairs if necessary This D operation may take a long time and is not usually necessary because Trevance will attempt to verify and repair automatically at startup Do you wish to proceed with verify repair now we 4 Click on The verify repair operation continues until the following mes sage appears Trevance Console J Database validation completed successfully EE 5 Click on 8 8 Archiving Trevance maintains an activity log that tracks e Processed web interface transactions e Processed batch transactions e Batch summaries You should set up the activity log to archive automatically as explained in Scheduling Database Maintenance on page 161 Archive Previous Day s Logs The activity log is exported to a delimited text file with a TRA extension in the ARCHIVE directory Archiving creates one file for batch transactions another file for batch summaries and a third file for web interface transactions After archiving 8 8 ARCHIVING 147 e The file for batch transactions
304. ssibly considered ex cessive for modern drives is specifically designed to make data recovery extremely difficult e The pattern was developed by Peter Gutmann and is often the pattern used by secure deletion utilities e Gutmann s paper describing the pattern can be found at http www cs auckland ac nz pgut001 pubs secure_ del html C 2 Trevance Secure delete is primarily intended for batch import files but Trevance also applies the secure delete option to any external file that it handles that may contain sensitive information in cluding temporary encryption files created during the upload and download process When Trevance is uninstalled the secure delete process is used to delete all configuration and data files that might contain sensitive information Note that log files are not removed during the uninstall process C 3 CNIEXPRESS 409 C 3 CN Express Secure deletion applies to all imported files both single and multi transactions When CN Express is uninstalled the secure delete process is used to delete all configuration and data files that might contain sensitive information Note that log files are not removed during the uninstall process C 4 Payment Vault Payment Vault does not have import files Error and Event Messages Trevance System Errors that may be reported by E Mail These messages are descriptive of the issue that Trevance has encoun tered D 1 General Note
305. ssing 2 2 INSTALLING TREVANCE 11 service Production mode is strictly for processing real transac tions Once you ve configured and tested Trevance you can switch to the production mode and you can run Trevance as a service see page 125 confident that Trevance will work smoothly 2 2 2 Installation Procedure 1 Begin the installation from the Auric Systems International web page www AuricSystems com Go to Downloads and follow the instructions for downloading Trevance payment software 2 The following screen appears Trevance Setup a ES Welcome to the Trevance Setup Wizard This wizard will guide you through the installation of Trevance Tt is recommended that you close all other applications before starting Setup This will make it possible to update relevant system files without having to reboot your computer Click Next to continue Next gt Cancel 3 Click on to view 12 CHAPTER 2 INSTALLING TREVANCE Trevance Setup E X License Agreement G Please review the license terms before installing Trevance Press Page Down to see the rest of the agreement LICENSE AGREEMENT TERMS AND CONDITIONS 3 SE CAREFULLY READ ALL THE TERMS AND CONDITIONS OF THIS AGREEMENT IOR TO CONTINUING USE OF THIS PROGRAM CONTINUING USE OF THIS PROGRAM ONSTITUTES YOUR ACCEPTANCE OF THESE TERMS AND CONDITIONS IF YOU DO T AGREE WITH THE FOLLOWING TERMS AND CONDITIONS NO LICENSE IS ANTED HEREUND
306. st Never Be Stored ona Server Connected To the Internet 9 1 General Trevance CN Express and Payment Vault run on the local private network and not in either the DMZ or on a server directly connected to the Internet You must never store cardholder data on Internet accessible systems e g web server and database server must not be on same server 383 10 Facilitate Secure Remote Software Updates 10 1 General Auric does not force automatic Trevance CN Express or Payment Vault updates e The latest updates for Trevance and CN Express are al ways available for immediate download from the Auric Sys tems International web site at http www AuricSystenms com e Payment Vault updates are released privately as necessary e Both MD5 and SHA 256 hashes are provided on the Auric Systems International web site e After downloading the release or update you should per form your own MD5 and or SHA 256 calculation on the downloaded file to check the hashes before installing For additional security these hashes are also available via email from Auric Systems International Please call tech support for details Auric Systems International provides tools to perform these calculations but recommends you use third party tools to ensure integrity 385 11 Facilitate Secure Remote Access to Payment Application 11 1 General e Auric does not have remote access to the system where Trevance
307. st Refund PYTID RD M Refund R PYTID Queued to Batch Full Refund RD F Partial Refund PR PYTID Queued to Batch Partial Refund RD P Capture D PYTID Queued to Batch Do Capture RG P Capture Memo D CAPDATE Memo Post Sale PYTID RG M Final Capture FD PYTID Queued to Batch Do Capture RG F Continued on next page 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS Table 18 10 Continued from previous page 313 Action Trevance Required Fields Online Batch Action Auth Reversal L PYTID Do Void Do Void AR A AR A Order Reversal L PYORDR Do Void Do Void AR O AR O Auth Reversal w LB PYTID Do Void Do Void Billing Agreement AR B AR B Order Reversal w LE PYORDR Do Void Do Void Billing Agreement AR E AR E Create Order OO PYTOKEN Do Express Payment PYPAYER ED O Order From OO PYCID Do Reference Do Reference Contract AU E AU E Create Billing OC PYTOKEN Do Express Payment Agreement PYPAYER ED C Create Order w OE PYTOKEN Do Express Payment Billing Agreement PYPAYER ED E Mass Pay MP Mass Pay PENDING RG S Continued on next page 314 CHAPTER 18 FIRST DATA COMPASS PLATFORM Table 18 10 Continued from previous page Action Trevance Required Fields Online Batch Action Void V PYTID Remove Previous 18 3 5 1 PayPal Process Flow The PayPal process flow can be thought of in the following phases Initiation Authorization and Capture occur through
308. st be running under the Windows user account that you plan to use for production when the passphrase is set or changed The passphrase must be entered in two segments Each segment must be at least seven characters long The two segments should be entered by two different users each of whom know only a single segment of the passphrase First Segment User 1 Passphrase Confirm After you set the server passphrase this message changes to Change Server Second Segment User 2 Passphrase Passphrase Confirm The Server Passphrase has not been set ee 6 Type each segment into the given Passphrase box then re type it at confirm 7 Click on to view Trevance Console E J The server passphrase has been successfully set 8 Click on 9 You are now ready to generate or import an encryption key 3 5 2 Generate Import or Export an Encryption Key After you generate or import an encryption key you may config ure batch file imports and or exports for encryption as described earlier 1 Click on Configure 3 5 GENERATE SERVER PASSPHRASE AND BATCH FILE ENCRYPTION KEY 51 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Batch Files to view this message 4 Click on Encryption to view a screen like the following CER E Trevance can read import files that have been encrypted extemally using 256 bit AES This screen
309. st the service check if Trevance is processing trans actions e Click on Trevance s Log tab e Place a file with an IMP extension in your BATCHIMPORT directory e You should see the transactions being imported processed and exported 88 CHAPTER 4 WINDOWS SERVICE e Afterwards you might also check the BATCHIMPORT folder to confirm that Trevance renamed the IMP file with DNE extension or deleted it e Recommended NTFS File Security Configuration Auric Systems International recommends that you provide the following privileges for Trevance directories subdirectories and files Type of Privileges Trevance Directory Execute Trevance directory Read Write Trevance ini file Read Write but not ex ecute Archive BatchDecline BatchExport BatchImport Data Decline Export Import Log Warning both the directories and all their subdirectories Testing and Activating Trevance This chapter describes how to test your Trevance configuration in demo mode enter your serial number and activation key and then switch between the test and production Trevance Before you try out Trevance in the production mode and actually process real transactions you should conduct three con figuration tests e A web interface test in demo mode e A test of real time and batch imports and exports in demo mode e A test of your connection with the processing service in test mode Before you test your connection with
310. stomiza tions Auric can provide are e account aging when to remove UTIDs from long term stor age e tracking recurring billing steps e various back end databases for UTID account storage e direct integration with merchant systems e merchant specific custom interfaces and features The PaymentVault technology built into Trevance is totally optional The Payment Vault Server is a customized add on for use with Trevance and CN Express payment processing applications Please contact Auric Systems International for more information on the Payment Vault Server The combination of Trevance and Payment Vault have under gone third party PABP assessment Please view Visa s PABP list of validated payment applications for PABP status http www usa visa com merchants risk_management cisp_ payment_applications html 9 2 UTID Storage Trevance not Payment Vault generates the UTID value and en crypts the account number PaymentVault is strictly a storage facility It does not have the ability to unencrypt data UTIDs stored in Payment Vault are not only separated from the Person ally Identifiable Information card holder name card expiration date etc but are also separated from the encrypt decryption keys Trevance provides short term storage for UTID values Trevance can hold UTIDs for a user defined number of days up to 30 An 9 3 CONFIGURING PAYMENTVAULT 151 optimal Trevance storage time is a day or two longer
311. t e All other encryption failures ACE Encrypt Error specific ACE error Response values e ACCT Imported ACCT e EACCT Blank e ASIRESP According to primary transaction e RESPTEXT According to primary transaction See below for specific ACE Errors 172 CHAPTER 11 ACE AURIC CIPHER ENGINE 11 3 2 Online Decryption Failure Error causes transaction to reject Response values ACCT Blank EACCT Imported EACCT ASIRESP 311 RESPTEXT CNR Local Reject Account Decrypt Failed msg msg No server configured No Decryption Server for Encrypted Account All other decryption failures ACE Decrypt Error for EACCT EACCT specific ACE error See below for specific ACE Errors 11 3 3 Batch Encryption Failure The error is logged but the transaction is sent along in the batch Possible log messages ACE Encrypt Error specific ACE error Response values ACCT Imported ACCT EACCT Blank ASIRESP According to primary transaction RESPTEXT According to primary transaction See below for specific ACE Errors 11 3 ACE RELATED TREVANCE ERROR MESSAGES 173 11 3 4 Batch Decryption Failure The transaction generates a warning that is written to the warning file However the transaction is still sent to the processor along with the other transactions in the batch The error is also logged Warning strings written to warning file e No server configured No Decryption
312. t MOPs Credit card American Express Carte Blanche Delta Din ers Club Discover JCB MasterCard Novus Optima Visa Purchase card level II American Express MasterCard Visa Purchase card level III MasterCard Visa Electronic checks via the Web R2 PIN less debit card R2 18 3 METHODS OF PAYMENT ACTIONS AND REQUIRED FIELDS e PIN based debit card R2 e Bill Me Later R2 PayPal R2 e European debit R2 295 Trevance automatically recognizes some of these methods of payment 18 3 1 Important Information about Debit Cards Debit cards are not credit cards Debit cards must be treated in a significantly different way from credit cards The following table lists the most important information about debit cards Table 18 1 First Data Compass Debit Card Info Continued on next page Tieri Applies to Applies to PIN Less PIN Based Authorizing a debit card automatically removes yes yes money from the customer s checking account into First Data You cannot reverse this authorization yes a A refund authorization automatically adds money to no yes the customer s checking account Depositing a debit card moves money from First yes yes Data s account into your account You cannot void a debit authorization yes 296 CHAPTER 18 FIRST DATA COMPASS PLATFORM Table 18 1 Continued from previous page
313. t choose Web Interface 5 Click on the PRIVILEGE SETTINGS tab to view New U Formatk E User User Information Privilege Settings Web Interface Allow Transaction Types Amount Limits v Authors 1 Refund Auth PIN Debit Oniy Refunds Other caes 6 Select the Transaction Types Authorize only Refund Auth only or both 7 Type in the Amount Limits to set the highest amount that is allowed for a single refund and or other transaction at this 22 CHAPTER 2 INSTALLING TREVANCE web site If the box is left blank the web site can transfer any amount The default is any amount 8 Click on 2 4 4 Deleting the Default WEB User Take the same steps you used to delete the default ADMIN user see page 24 3 Configuring Trevance This chapter describes the general Trevance configuration The main tasks in setting up Trevance are e Configure password Change your current password e Configure users Add and delete users and change the user information e Configure reports e Configure e mail notification Arrange to receive hourly batch daily and other notifica tions by e mail e Configure Warnings e Turn off certain import warnings e Configure scheduled database maintenance e Configure processor settings Enter the information Trevance needs to communicate with your specific processing service this information is provided by the processing service e Configure the web interface Tell Trevance wh
314. t di rectly submits the transaction to the processor 3 CNIExpress submits each item in the batch as an indi vidual on line transaction and updates its database with processor responses when these are received Multiple trans actions may be submitted simultaneously 4 When CN Express has received all of the responses for a batch it reads the information out of the database for each transaction and builds and exports a delimited text file CN Express clears the CVV from its internal storage as soon as the response is received from the processor step 3 above In the database each transaction is stored as an object so updat ing a transaction with responses actually requires replacing that transaction in the database with a new one As soon as the re sponse is received CN Express clears the CVV from the trans action object along with writing the processor responses to it It then overwrites the transaction in the database with the new one eliminating CVV from storage 2 3 2 Key Handling During Upgrade from CN Express 4 x to CN Express 5 x CNIExpress 5 0 introduces support for external key managers to track encryption keys Encryption is used in CN Express to 2 3 CNIEXPRESS 361 secure cardholder data and other sensitive information such as payment processor account passwords Using an external key manager allows CN Express to use several different keys to en crypt data making compromise of the
315. t must remain in XML format Using the configuration file you can e Backup configuration information export and then restore it to the same installation import e Copy configuration information from one installation of Trevance export and transport it to another installation import There are several important points to remember when export ing or importing configuration information 76 CHAPTER 3 CONFIGURING TREVANCE Table 3 11 Importing Exporting Configuration Informa tion Format of Information Content of Information User EXPORT XML format Trevance exports all Anyone Administrators configuration information console users and web except for passwords users can export This export file is the only configuration file that Trevance can import IMPORT XML format Trevance never imports Only an administrator can passwords run mode serial import number and activation key Those four items stay the same All other configura tion information is replaced by the information in the imported file 3 9 0 2 View and Export Configuration File 1 Click on Help 2 Click on Configuration Report to view a report like the following Configuration Report Ja ES AU A TREVANCE CONFICURATION REPORT Created 2 8 2007 10 10 25 AM ServerName Trevance CN 4200 Transaction Catevay Version 2 1 SerialNumber ActivationKey ServerFunctionality 42
316. tart Trevance 14 3 High Availability When running in a high availability environment it is usual to have two load balanced Trevance installations in production paired with to load balanced Trevance installations in the fail over or disaster recovery environment Prudent practice is to periodically copy over the contents of the Recovery Log from the production to the fail over machine As noted above the combination of a backup and recent Recov ery Logs provides the ability to restore the state of the Firebird database 14 3 1 Copying Recovery Logs on Windows In a high volume environment the copy logs are continually being written As such it can be difficult to get a clean copy of them Performing just a simple copy or using an application such as RoboCopy will end up with many warnings that files are locked and unable to be written or moved In Windows the correct way to address this problem is to take a Volume Shadow Copy before performing the copy operation This takes a snapshot of the state of the files at a specific point in time and allows Trevance to continue appending to these files while the copy is in process There are various administrative tools for performing this shadow copy The instructions provided below are just one approach and uses RoboCopy to perform the actual copy operation 1 Acquire a copy of vshadow http msdn microsoft com en us library bb968832 v vs 85 aspx 14 4 REPAIR 183 2 Ac
317. tempted pause Trevance encountered a timeout while shutting down the HTTP web inter face Shutdown the server and restart Suggested Action Shutdown the server and restart D 4 EVENTS 417 Message Information Running on Primary or Secondary ip address SSL port Expanded Information Message is generated during each daily maintenance Allows monitoring of which connection primary secondary is currently active Message Warning Timeout on primary socket primary socket automatically changed to ipaddress socket Expanded Information Message occurs when a time out or connection error occurs and primary socket is no longer able to communicate with the payment processor Suggested Action You should monitor for this message and explore why the switch over occurred It could be indicative of pending hard ware or communications failures in the environment Message Information Switching from Primary ip address to Secondary ip address Expanded Information Message occurs when Primary is unable to connect but Secondary remains active Suggested Action You should monitor for this message and explore why the switch over occurred It could be indicative of pending hardware or communications failures in the environment D 4 1 1 Provide These Suggested Logs with Server Management Events e Trevance Log Exception Log Socket Log e Web Log 418 APPENDIX D ERROR AND EVENT MESSAGES Batch Upload Download Logs Batch
318. terna tional web site specifically e General Trevance Support http www AuricSystems com support center trevance Additional html reference documents are available your local Trevance installation s Doc directory You may also find First Data s 120 byte Batch Technical Speci fication and On Line Processing Technical Specification to be use ful Please contact your First Data representative for copies 281 282 CHAPTER 18 FIRST DATA COMPASS PLATFORM 18 1 Configuring Processor Settings To configure the processor settings 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on PROCESSOR SETTINGS to view a screen like the fol lowing 18 1 1 Basic Settings ke First Data Compass Basic Settings Submitters Divisions Server Info PID PID Password Job Name Upload Directory Download Directory i Cancel 4 Click on the BASIC SETTINGS tab BASIC SETTINGS information identifies the company present ing the transactions to First Data In other words it iden tifies the company that is running Trevance This is required information which comes from First Data 5 The PID Presenter ID identifies your installation 6 The PID PASSWORD is associated with the Presenter ID 18 1 CONFIGURING PROCESSOR SETTINGS 283 The Job Name identifies your files to the Message Way com munications system The
319. ternal appli cation After the processing service processes the transactions it sends the results to Trevance Trevance updates its database with this information then prepares the processed transactions for ex port in a delimited text file Trevance remembers the name of the import file that con tained the original transactions It places the processed transac tions in a delimited text file with the same name only the ex tension changes For example transactions imported from a file named ABC IMP are exported to a file named ABC EXP You configure Trevance to prepare the export file in one of two ways e Either it places approved and declined transactions in one file EXP e Or it places approved transactions in one file OK and de clined transactions in another file BAD Then it exports both files The BAD file lets you quickly find transactions that need follow up action without searching a large EXP file for a few declined records By default Trevance does not split approvals from declines 6 3 2 1 File directories and extensions Trevance processes many delimited text files for batch transac tions including bad done export import and okay files Infor mation on batch transactions appears in the archive files Through out this manual it s assumed that files are being stored in the 6 3 UNDERSTANDING TREVANCE TERMS 111 default directories under the default file extensions For infor
320. th the Web Response Format screen you actually configure the response Trevance sends The following sections give separate instructions for configuring each form on the Web Interface Settings screen You can also move from tab to tab from form to form and then save all your changes at once without leaving the screen Look in Trevance s SampleCode directory for examples of how to talk to the web server using various programming languages 3 6 1 Enable Web Interface and Change Server Port 1 Click on Configure 2 If the server isn t paused click on Pause Server to Configure Items Below 3 Click on Real Time Web Interface to view 56 CHAPTER 3 CONFIGURING TREVANCE Pel Web Interface Settings Al ES The Web Interface accepts real time transactions through an HTTP Interface JV Enable Web Interface General Web Request Format Web Response Format Server Port e004 Server IP 192 168 24 132 Protocol You must install SSL DLLs and obtain a server certificate before you can choose HTTPS Click HTTPS Configuration for assistance in performing these steps HTTP C HTTPS Secure HTTPS Configuration f Cancel 4 To enable the web interface you must have a check mark in the Enable Web Interface box The default is no check mark web interface is not enabled Click on the box to add the check mark 5 Click on the General tab 6 If necessary change the server po
321. the IP address of the machine on which Trevance is installed is 10 25 18 187 then the UTID Station Identifier is 187 This may be manually changed You must carefully check these values if you happen to be run ning two copies of Trevance or CN Express on two different subnets or if you move Trevance from one machine to another Changing this value has no effect on how UTID values are looked up This only alters how they are generated Payment Vault Server If you are using the optional Pay mentVault Server enter the URL for accessing that server in this field Otherwise leave blank See Payment Vault documentation for details UTID Migration Block Size The number of UTIDs sent to Payment Vault in a group Immediately Store UTIDs to Payment Vault Configures Payment Vault to add a UTID immediately for each transaction See Payment Vault documentation for details Legacy Payment Vault Encrpytion Encryption using local keys rather than managed keys Only for use in specific scenarios 9 4 Returning UTIDs from Trevance Payment Vault UTID values are generated whenever you configure Trevance to export a UTID TM 154 CHAPTER 9 PAYMENTVAULT UTID values must be presented to Trevance in the UTID field not the Account field where you would pass a credit card account number A typical UTID from Version 3 is 39 ASCII characters and looks something like this SlhVTm1lgHKxFu2ybwdeim17DX YcA AAcB1400822 The last
322. ting some transactions such as debit card authorizations have mone tary consequences e Ifa transaction timeout is received Trevance switches con nections e Primary socket connection can also be set manually without pausing Trevance Select Server Primary Real Time Socket from the menu and select which socket you want to use as the Primary socket e A log entry appears whenever connections are switched 16 0 7 S FTP Server with NetConnect The Trevance CN 3500 supports S FTP over Internet as well as FTP over Frame Relay VPN Please check with your Paymentech representative regarding this ability In the CN 3500 The Server Info tab provides a radio button for selecting between NetConnect Internet SFTP FTP VPN or Frame and SFTP VPN or Frame When you choose use Net Connect SFTP Trevance presents the following dialog 201 Basic Settings Submitters Divisions Server Info Electronic Reports Batch Server Settings NetConnect Internet SFTP C FTP VPN or Frame SFTP VPN or Frame User aurictst Set ZipFile Password Generate Keys for Public Key Authentication Primary Server netconnectbatcht chasepaymentechnet Secondary Server netconnectbatch2 chasepaymentechnet Primary Test Server netconnectbatchvarl chasepaymentechnet Secondary Test Server netconnectbatchvar2 chasepaymentechnet The information for completing these fields is provided by Chase Paymentech Nev
323. tions as defined by the payment processors 12 3 CN Express CN Express sends transactions to payment processor gateways using secure HTTPS protocols as defined by the specific gateway provider 391 392 CHAPTER 12 ENCRYPT SENSITIVE TRAFFIC 12 4 Payment Vault Payment Vault communicates only with Trevance and CN Express via the local private network 13 Encrypt all Non Console Administrative Access 13 1 General 13 2 Trevance e All administrative access to Trevance is through the Tre vance Console e All configuration changes must occur through the Trevance Console e All Administrative changes must occur from a Trevance Con sole running on the same server as Trevance e Access to the Trevance Console is managed by operation system level user permissions e All non console administrative access to the Trevance sys tem via Windows Remote Desktop or other remote access methods must employ secure authentication and strong en cryption to prevent the compromise of administrative cre dentials or sensitive data For example if Windows Re mote Desktop access is used it must be configured to require strong encryption minimum of 128 bit key Refer to this Microsoft TechNet article for an example http technet microsoft com en us library cc770833 aspx 13 3 CN Express e All administrative access to CN Express is through the CN Express Settings Manager which must be run on the same machi
324. turned from the batch interface not the web interface as Paymentech does not support real time capture Get returns customer information in the usual fields you would send to Paymentech for a credit card or check transaction BILLF NAM BILLLNAMe BILLEMAL etc Table 16 20 Chase Paymentech Salem Retail Credit Card Swipe Authorization Deposit Sale Refund Track 1 or Track 2 Account Track 1 or Track 2 Account Expiration Date Expiration Date Continued on next page 243 Table 16 20 Continued from previous page Authorization Deposit Sale Refund Authorization Date Authorization Code Trevance automatically recognizes retail credit card swipe transactions Either TRACK1 or TRACK 2 data can be provided If both are provided Trevance uses TRACK 1 since it contains more data During authorization Trevance extracts the account and ex piration date from the track data and returns it in the ACCOUNT and EXPIRATION fields Merchants must remember this data for later submission to Trevance in a deposit or refund transaction You must not store track data after the authorization is complete Trevance in compliance with Card Table 16 21 Chase Paymentech Salem Retail Credit Card Manually Entered Authorization Deposit Sale Refund Expiration Date Expiration Date Expiration Date Expiration Date Zip Code Zip Code Zip Code Zip Code Class Class Class Class
325. turns it in the ACCOUNT field Merchants must remember the account number for later submis sion to Trevance in a deposit or refund transaction You must not store track data after the authorization is complete Trevance in compliance with Card Association rules does not export the track data after processing PIN based debit cards require a real time refund authoriza tion transaction followed by a batch refund settlement transaction Like the authorization deposit transactions both the refund au thorization and the refund transactions move money These trans actions must always be issued in pairs and always for the same amount The action code for a real time refund authorization is RA Table 16 13 Chase Paymentech Salem ARC Authorization Deposit Sale Refund Routing Number Routing Number Routing Number Routing Number BillAddress BillAddress BillAddress BillAddress First Name First Name First Name First Name BillAddress BillAddress BillAddress BillAddress Last Name Last Name Last Name Last Name Continued on next page CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 228 DIRECT SALEM Table 16 13 Continued from previous page Authorization Deposit Sale Refund Check Number Check Number Check Number Check Number ECP Authorization Method 1 ECP Authorization Method 1 ECP Authorization Method 1 ECP Authorization Method 1 Checking Account Type 2
326. types of transac tions you will be doing Table 3 1 Configuring Imports Name of File Processing Service CreditCards txt Just Credit Cards You can configure imports using any file with a TXT or CSV or IMP extension but for actual processing Trevance only accepts files with a IMP extension In the following procedure the CreditCards txt file is used The file you choose to work with appears on a screen like the following 3 3 CONFIGURING PROCESSOR SETTINGS 39 Access additional information about fields E Configure Impor BATCH FILES Column name E Field Reference Columns with Data trom CreditCards txt identifies n ASDF Accoura AARS feld c 6011 9796 8607 3072 Records from tans Advice 2 A 5191 4090 3755 0100 the delimited SSRIS c 5191 4090 3756 0100 text file Auth MOP c 6011 9247 5752 2219 Authorization Source Code lt Authorized Time AVS Ri d Import List of AVS Requeste import Fie Security Defaut Vales After Import available field BilAddessAddress 2 Delimiter Options a BilAddress Apt names names Address Country G Tob I Fist Row Contains Field Names marked with Bil ddress Emai Y Fields Include Quotes an asterisk Bil ddres Home Phone C Comma are required BilAddress Midde Initial Bil ddress Work Phone Biler Reference C Other BML Customer Type BML Item Category A Required Fields Default Copy From The column name contains information about the field For example lt
327. unt 8 L3_TAXRATE M V Tax rate on item 9 L3 TAX M V Tax paid on item 10 L3_ITEMAMT Yes M V Item total amount 11 L3_COMDCODE V Commodity code 12 L3_INCLTAX M Total contains tax 13 L3_TAXTYPE M Tax Type 14 L3_ISDISC M Discount indicator 15 L3 COMMENT Local Comment E 3 IMPORTING E 3 Importing 437 The following table describes the information that can be imported into each field and the maximum length of that field Do not pad the field with Os or blanks to extend it to the maximum length Table E 3 Importing Field Number Name Type Example Description 1 Tag Literal L3 L3 2 L3_DESCRPT A N 35 MC CAP General description of the A N 26 VI PROMO purchased product 3 L3 PRODCODE A N 12 CAP Product code 2982 4 L3 QTY N 4 50 How many or much pur chased Cannot be 0 Must be whole number 5 L3 MEASURE A N 12 EA Free form field Paymentech has compiled a list of suggested standard measures which is available on the web at http www AuricSystems com level_3_measures 6 L3_UNITCOST N 12 1 VI 4 99 Cost for this line item 7 L3_DISC N 12 1 10 00 Amount of discount applied to this line item Continued on next page 438 APPENDIX E LEVEL II TRANSACTIONS Table E 3 Continued from previous page Field Number Name Type Example Description 8 L3_TAXRATE N 4 0 05 Tax rate on item 9 L3_TAX N 12 1 12
328. unts in the control panel Click on Create a New Account Name your new account trevanceservice Click Next At Account Type click on the Computer Administrator radio but ton Administrators have certain rights including the right to log on as a service Your new account is listed under Pick an account to change At Create a password type in a password 2003 Server and 2000 Professional Open Users and Passwords in the control panel At User Name type trevanceservice Click Next At Password type in a password repeat in the Confirm Password box 4 2 SETTING UP AND CHANGING REMOTE DIRECTORIES 85 13 At Level of Access click on Other 14 Scroll down until Administrators appears in the Others box 15 Click on Finish 4 1 3 After Establishing the Log On Account After you ve established the log on account you must set up Trevance to run the server as described in Run Trevance As a Service on page 129 Exit Trevance then start the service manually 4 2 Setting Up and Changing Remote Directories The following procedure is necessary if at least one Trevance directory is on a remote computer it isn t necessary for local ser vice You must create a user name and password on the computer where your directories are located This user name and password must be exactly the same as the one you established for the com puter where Trevance is installed see page 126 Use the sa
329. uration Report The report will be copied to the clipboard and can be pasted into other documents or email 414 APPENDIX D ERROR AND EVENT MESSAGES D 4 Events D 4 1 Server Management Events Message Automatic Password Change Error s Expanded Information Some Trevance versions support processor specific password management requirements and automate the password change process This message occurs when there is a problem with the automated password change Suggested Action Review with your Payment Processor for a possible Password Reset See Trevance manual or Doc s direc tory for additional Password Management information Message Can t Send E Mail Notification Because E Mail Set tings Are Incomplete Expanded Information Trevance Can t Send E Mail Notifi cation Because E Mail Settings Are Incomplete Suggested Action Review and complete the email settings in Trevance Trevance Menu Configure gt Email Notification Message Console Port Error s Expanded Information Trevance Console Port is configured incorrectly Suggested Action Review Trevance Menu Configure gt Set Console Port Message Disabling Web Interface Correct port error using console Expanded Information Trevance Console Port is configured incorrectly in the Console login dialogue box Trevance Console port Suggested Action Configure Trevance Console Port to correct setting D 4 EVENTS 415 Message Error Sending E Ma
330. ure authentication will result in non compliance with PCI DSS 3 2 Trevance 3 2 1 Replace Default Users From the Configure Administer Users dialog e Create a new user e Set the User Type to Administrator e Enter a strong password consisting of at least seven 7 char acters and both alpha and numerical characters e Repeat for default WEB User Trevance CN 3500 does not have a WEB User since it does not have a web interface e Create a unique user ID for each person requiring access to the Trevance console e Delete the original Admin user e Delete the original WEB user Provide Administrative access only to those users who must change Trevance configurations All other users should receive Console access 3 3 CNIEXPRESS 367 If a Trevance user fails to log in to the Console after six attempts they are locked out of the system for 30 minutes The one exception to this is the WEB user accounts for the real time web transaction interface A lockout in this instance would lead to a denial of service Trevance Administrative accounts are automatically logged out after 15 minutes of inactivity Console users are not auto matically logged out since typically these are used as long term monitoring accounts Auric recommends that Trevance Administrative accounts be used solely for administration and not for monitoring purposes 3 3 CN Express9 3 3 1 Replace Default Users From the Configure Admi
331. us hour Import Error Lists any errors that occurred when importing batches Continued on next page 10 2 CONFIGURING AND SENDING E MAIL NOTIFICATIONS MESSAGES 165 Table 10 1 Continued from previous page Type of Notification Contents Login Report Lists every log in the time and the IP the user logged in from Pause Resume Notifies you immediately whenever Trevance is paused or resumed Startup Notifies you immediately whenever the system starts up System Error Lists any systems errors All e mails also include information on the mode of Trevance demo test or production 5 Click next to XML Attachment to automatically receive an XML version of the reports you selected 6 Click on the Mail Server tab to view E Mail Notification Y Message Content Mail Server Scheduling SMTP Server SMTP Pott 25 Default Port is 25 From Address YourName YourCompany com Send Mail To Use Authentication Send Test Message Cancel 7 Type your SMTP Server address You must enter an address before you can receive messages 166 10 11 12 13 14 CHAPTER 10 REPORTS AND EMAILS If necessary change the SMTP Port Auric Systems Interna tional strongly recommends that you leave the default at 25 Type the Internet From Address This is the address that appears in the from field of the e mail you receive y
332. ve for copies 20 1 Configuring Processor Settings To configure the processor settings 1 Click on CONFIGURE 2 If the server isn t paused click on PAUSE SERVER TO CON FIGURE ITEMS BELOW 3 Click on PROCESSOR SETTINGS to view a screen like the fol lowing 20 1 0 1 Basic Settings 4 Click on the BASIC SETTINGS tab BASIC SETTINGS information identifies the company present ing information to FNMS In other words it identifies the company that s running Trevance This is required information which comes from FNMS 331 332 CHAPTER 20 TSYS 20 1 0 2 Merchant Numbers 5 Click on the MERCHANT NUMBERS tab to view a screen like the following First National Merchant Solutions Basic Settings Merchant Numbers Server Info Merchant Alias Default Currency Description Cancel Merchant Numbers identify transactions as belonging to dif ferent categories such as the different parts of a large com pany mail order phone order web sales or totally different companies as in the case of an in bound call center process ing for many merchants Merchant Numbers are also used to process and report on transactions in different currencies Although FNMS allows you to set the currency value with each and every transac tion it is typical and considered a best practice to have FNMS configure a Merchant Number for each currency in which you process Yov ll see the information in this screen
333. vered using software un delete tools Even files that have been overwritten can sometimes be recovered using additional hardware and sophisticated forensic techniques Trevance and CN Express offer three deletion choices rang ing from the quick but not secure standard operating system delete to a multi pass secure deletion e Quick Delete e One Pass Overwrite and Delete e Multi Pass Overwrite and Delete Because the multi pass secure deletion requires 35 write passes over the file some sites may determine this consumes too much time or causes too much hard disk activity and interferes with other services To address this Trevance and CN Express pro vide a one pass secure delete that simply overwrites the file data with 0 s before deleting C 1 1 Quick Delete e Uses standard operating system calls e Doesn t overwrite any of the file typically only the directory entry is updated and so is very fast e File data is easily recovered if this option is used 407 408 APPENDIX C SECURE FILE DELETION C 1 2 One Pass Overwrite e File is overwritten with a single pass of binary zeros e This makes it difficult to recover the file using undelete tools e Theorectically the file data might still be recoverable using sophisticated forensic tools C 1 3 Multi Pass Overwrite and Delete e Overwrites file data with 35 passes using various data pat terns e The 35 overwrite patterns though po
334. ware Updates 385 10 1 General o 385 11 Secure Remote Access 387 11 1 General 387 11 2 Trevance vias cw opa al es 388 11 3 CN Express dA rd RAKES 388 11 4 Payment Vault ence Be e ate Sak ee 389 x CONTENTS 12 Encrypt Sensitive Traffic 391 12 1 General ooa aa a 391 12 2 Trevance oaoa aaa a 391 12 3 CN Express oaa 391 12 4 Payment Vault tee i E Hach ek og an eh 392 13 Encrypt all Non Console Administrative Access 393 13 1 General o cossa oet Va mad ee ee a 393 13 2 Trevance fu angie Soe Be a a 393 133 CN Express 644444544445 ha 464 393 13 4 Payment Vault AAA E oe 394 14 Maintain Instructional Documentation and Train ing Programs 395 14 1 a eug aah ae og oe Hee ee ee a g 395 V Appendices 397 A Frequently Asked Questions 399 A l Frequently Asked Questions 399 B Troubleshooting Trevance 405 C Secure File Deletion 407 C 1 General ooa aa ee ee Be 407 C 1 1 Quick Delete 407 C 1 2 One Pass Overwrite 408 C 1 3 Multi Pass Overwrite and Delete 408 C 2 Trevance cara nda a 408 Cu CN Express e ute rte od de 409 C 4 Payment Vault A 409 D Error and Event Messages 411 D 1 General Notes ooa eee Ro oS ess 411 D 2 Trevance Logs ais a 412 D 3 Configuration Report o oaoa a a 413 D 4 Ey nts s coce aeaea a a RO A 414 D 4 1 Server Management Events 414 CONTENTS xi D 4 2 Error Reading or Writin
335. will continue to use the old key Such data is transitory and will be flushed from the system within a few hours transactions queued for end of day or days Payment Vault data is cached depending on the number of days you have configured to hold it in Trevance e Ifyou are using Payment Vault CN Express will re encrypt the historic data as it is retrieved from Payment Vault dur ing normal UTID retrieval 2 3 1 Clearing Sensitive Cardholder Data in Batch Transactions CN Express supports sending batch authorization transactions Authorization transactions may include sensitive cardholder data CVV or CID Because these are batch transactions it is neces sary for CN Express to temporarily store this information in its internal database as the batch is prepared for transmission to the payment processor To ensure that this data is not retained any longer than neces sary CN Express clears this information from its database when 360CHAPTER 2 PROTECT STORED CARDHOLDER DATA the batch export file is generated CN Express also never exports this information On a general level batch transmission through CN Express works like this 1 Merchant places a delimited text file with batch transactions in the CN Express import directory 2 CN Express reads in and parses this file storing the in formation in its internal database For single item files CNIExpress does not store the information at all bu
336. xternal file A screen like the following appears ThevanceBatchFie Kei z Saveastype KEY fleske zo Cancel 8 Browse to the location where you want to save the encryption key wokan 10 Click on Importing Encryption Key 11 To import a new encryption key click on SEREEN to view 3 5 GENERATE SERVER PASSPHRASE AND BATCH FILE ENCRYPTION KEY 93 12 13 14 15 16 17 2 This will replace an existing encryption key Are you sure you want to continue ej Click on to view a screen like the following jRecoveryLog Reports QSamplecode tere Templates Warning fF ti tw KEY files key Cancel I Open as read only Type in the File name Browse to the location where you want to save the encryption key Click on Click on Exporting Encryption Key To export an encryption key click on Erwe to view a screen like the following 54 CHAPTER 3 CONFIGURING TREVANCE Save Batch Encryption Key File Xs Save in O Trevance ck archive SampleCode LJ Backup Tene Recent BatchDecline Templates DBatchExport Warning E O BatchImport Certificates Desktop E ComponentLicenses data Docs FilesFromProcessor My Documents Eos Openssl O RecoveryLog Mo Comouiet Reports File name TrevanceBatchFile Kes z Save as type KEY files key 18 Browse to the location where you want to save t
337. xternal key manager to track encryp tion keys Encryption is used in Trevance to secure cardholder data and other sensitive information such as payment proces sor account passwords Using an external key manager allows Trevance to use several different keys to encrypt data making compromise of the entire data set much more difficult for attackers In Trevance 2 0 there were two internal encryption keys that were generated at the merchant site when the merchant entered 2 2 TREVANCE 307 the server passphrase One key was used for cardholder data and the other for administrative passwords These keys were then encrypted using the passphrase which was to be entered in two segments by two administrators The passphrase was in turn en crypted using Windows encryption DPAPI so that it could be stored and would not need to be re entered each time the system was restarted Key manager encryption improves on passphrase encryption in two ways 1 There are more keys than the two which had been used in previous versions of Trevance and 2 Users do not need to track a passphrase for the Trevance server and the server may be migrated from physical ma chine to physical machine without needing to recover the data as long as connection to the same key server is main tained When upgrading from Trevance 2 x to Trevance 3 0 Trevance must retain the existing keys so that it can decrypt any existing data that may be stor
338. y which ecom merce transactions are received The most common is EN CRYPTED HTTPS indicating a secure web transaction You can set a different default value at Paymentech for each di vision If you use that method select MERCHANT DEFAULT Methods of Payment Actions and Required Fields Trevance for Paymentech Direct supports the following methods of payment MOPs Credit card American Express Carte Blanche ChaseNet Delta Diners Club Discover JCB MasterCard Novus Op tima Visa Purchase card level II American Express MasterCard Visa Purchase card level III MasterCard Visa Electronic checks via the Web Point of Purchase POP and Accounts Receivable Conversion ARC Switch Solo Maestro UK private label debit card Third party encrypted credit card Third party encrypted check PIN less debit card PIN based debit car Bill Me Later Green Dot9 MoneyPak PayPal O European debit ValueLink custom CN 4250 Trevance automatically recognizes some of these methods of payment For others specific fields must be set Refer to the 211 Method of Payment documentation in the Trevance Field Ref erence for Paymentech Direct http www AuricSystems com trpaymentech120 CHAPTER 16 CHASE PAYMENTECH SOLUTIONS 212 DIRECT SALEM Important Information about Debit Cards Debit cards are not credit cards Debit cards must be treated in a significantly different way from credit cards
339. yPal web site for authentication Use the PY TOKEN value as the PayPal Token parameter GC Get for Contract Get customer information name shipping address etc as well as PYPAYER OC Create Billing Agreement Get back a PYCID value A Authorise from Contract Get back a PYTID D Capture Capture the authorization using the PYTID returned by the Auth Get back a different PYTID which refers to the capture itself You could also create an order from contract and then auth capture against that In order to simplify recurring billing First Data has a Re curring Sale transaction which is available only in Batch mode Trevance implements this Recurring Sale as an S transaction Note that the S transaction for the real time web works differ ently from the S transaction for batch 316 CHAPTER 18 FIRST DATA COMPASS PLATFORM When doing refunds the PYTID returned from the Capture must be used Note that this PYTID is only returned from the batch interface not the web interface as First Data does not sup port real time capture Get returns customer information in the usual fields you would send to First Data for a credit card or check transaction BILLF NAM BILLLNAMe BILLEMAL etc Table 18 11 First Data Compass Retail Credit Card Swipe Authorization Deposit Sale Refund Track 1 or Track 2 Account Track 1 or Track 2 Account Expiration Date Expiration Date Authorization Date Authorization C
Download Pdf Manuals
Related Search